First published: Sun Aug 13 2023(Updated: )
Vulnerability of input parameters being not strictly verified in the AMS module. Successful exploitation of this vulnerability may compromise apps' data security.
Credit: psirt@huawei.com psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Emui | =11.0.1 | |
Huawei Emui | =12.0.0 | |
Huawei Emui | =12.0.1 | |
Huawei Emui | =13.0.0 | |
Huawei Harmonyos | =2.0.0 | |
Huawei Harmonyos | =2.0.1 | |
Huawei Harmonyos | =2.1.0 | |
Huawei Harmonyos | =3.0.0 | |
Huawei Harmonyos | =3.1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2023-39383.
The severity level of this vulnerability is high with a score of 7.5.
The following software versions are affected: Huawei Emui 11.0.1, Huawei Emui 12.0.0, Huawei Emui 12.0.1, Huawei Emui 13.0.0, Huawei Harmonyos 2.0.0, Huawei Harmonyos 2.0.1, Huawei Harmonyos 2.1.0, Huawei Harmonyos 3.0.0, Huawei Harmonyos 3.1.0.
This vulnerability can be exploited by not strictly verifying input parameters in the AMS module, which may compromise apps' data security.
To fix this vulnerability, it is recommended to apply the security update provided by Huawei.