7.7
CVE-2023-52713
- EPSS 0.13%
- Veröffentlicht 07.04.2024 09:15:08
- Zuletzt bearbeitet 13.03.2025 14:51:44
- Quelle psirt@huawei.com
- CVE-Watchlists
- Unerledigt
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.13% | 0.028 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.7 | 2.5 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
|
CWE-862 Missing Authorization
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
https://consumer.huawei.com/en/support/bulletin/2024/4/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202404-0000001880501689