Security feature bypass

2023-12-0609:15:00

PRIOn knowledge base

www.prio-n.com

security feature bypass

api vulnerability

designed for reliability

service confidentiality

nvd

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

37.2%

JSON

Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module. Successful exploitation of this vulnerability may affect service confidentiality.

CPENameOperatorVersion
emuieq13.0.0
harmonyoseq3.0.0
harmonyoseq2.1.0
harmonyoseq3.1.0
harmonyoseq4.0.0

Name	Operator	Version
emui	eq	13.0.0
harmonyos	eq	3.0.0
harmonyos	eq	2.1.0
harmonyos	eq	3.1.0
harmonyos	eq	4.0.0

References

consumer.huawei.com/en/support/bulletin/2023/12/

device.harmonyos.com/en/docs/security/update/security-bulletins-202312-0000001758430245