5.5

CVE-2023-52383

Double-free vulnerability in the RSMC module
Impact: Successful exploitation of this vulnerability will affect availability.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HuaweiEmui Version13.0.0
HuaweiEmui Version14.0.0
HuaweiHarmonyos Version3.0.0
HuaweiHarmonyos Version3.1.0
HuaweiHarmonyos Version4.0.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.14% 0.04
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
psirt@huawei.com 4.7 0.5 4.2
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H
CWE-415 Double Free

The product calls free() twice on the same memory address.

https://consumer.huawei.com/en/support/bulletin/2024/5/
Vendor Advisory
https://device.harmonyos.com/cn/docs/security/update/security-bulletins-phones-202405-0000001902628049
Vendor Advisory