First published: Mon Sep 25 2023(Updated: )
DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.
Credit: psirt@huawei.com psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Emui | =11.0.1 | |
Huawei Emui | =12.0 | |
Huawei Emui | =12.0.1 | |
Huawei Emui | =13.0.0 | |
Huawei Harmonyos | =2.0.0 | |
Huawei Harmonyos | =2.0.1 | |
Huawei Harmonyos | =3.0.0 | |
Huawei Harmonyos | =3.1.0 | |
Huawei Harmonyos | =4.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-39409 is a Denial of Service (DoS) vulnerability in the PMS module that can cause the system to restart.
CVE-2023-39409 affects Huawei Emui 11.0.1, Huawei Emui 12.0, Huawei Emui 12.0.1, Huawei Emui 13.0.0, Huawei Harmonyos 2.0.0, Huawei Harmonyos 2.0.1, Huawei Harmonyos 3.0.0, Huawei Harmonyos 3.1.0, and Huawei Harmonyos 4.0.0.
CVE-2023-39409 has a severity rating of high (7.5).
To fix CVE-2023-39409, it is recommended to apply the security updates provided by Huawei. Please refer to the following links for more information: [Huawei Support Bulletin](https://consumer.huawei.com/en/support/bulletin/2023/9/) and [HarmonyOS Security Bulletins](https://device.harmonyos.com/en/docs/security/update/security-bulletins-202309-0000001638925158).
CWE-120 is a security weakness categorized as a Buffer Copy without Checking Size of Input vulnerability.