5.5
CVE-2023-52384
- EPSS 0.14%
- Veröffentlicht 14.05.2024 14:22:05
- Zuletzt bearbeitet 09.12.2024 18:06:50
- Quelle psirt@huawei.com
- CVE-Watchlists
- Unerledigt
Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.04 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| psirt@huawei.com | 4.7 | 0.5 | 4.2 |
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H
|
CWE-415 Double Free
The product calls free() twice on the same memory address.
https://consumer.huawei.com/en/support/bulletin/2024/5/
https://device.harmonyos.com/cn/docs/security/update/security-bulletins-phones-202405-0000001902628049