Lucene search

[email protected]NVD:CVE-2023-34159

HistoryJun 19, 2023 - 5:15 p.m.

CVE-2023-34159

2023-06-1917:15:12

[email protected]

web.nvd.nist.gov

permission control

notepad

privilege escalation

availability

confidentiality

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.002

Percentile

54.4%

JSON

Improper permission control vulnerability in the Notepad app.Successful exploitation of the vulnerability may lead to privilege escalation, which affects availability and confidentiality.

Affected configurations

Nvd

Node

huaweiemuiMatch13.0.0

VendorProductVersionCPE
huaweiemui13.0.0cpe:2.3:o:huawei:emui:13.0.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	emui	13.0.0	cpe:2.3:o:huawei:emui:13.0.0:::::::*

References

consumer.huawei.com/en/support/bulletin/2023/6/

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.002

Percentile

54.4%

JSON

Related for NVD:CVE-2023-34159

prion1 cvelist1 cve1