First published: Mon Nov 20 2023(Updated: )
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through type confusion.
|Affected Software||Affected Version||How to fix|
CVE-2023-6045 is a type confusion vulnerability in OpenHarmony v3.2.2 and prior versions.
CVE-2023-6045 allows a local attacker to execute arbitrary code in pre-installed apps through type confusion.
The severity of CVE-2023-6045 is high with a CVSS score of 7.8.
To fix CVE-2023-6045, update your OpenHarmony installation to version 3.2.3 or later.
You can find more information about CVE-2023-6045 in the OpenHarmony security disclosure page: https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2023/2023-12.md