PT-2024-19260 · Unknown · Openharmony
Published
2024-04-02
·
Updated
2025-01-27
·
CVE-2024-22180
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
OpenHarmony versions prior to 4.0.0
OpenHarmony version 4.0.0
Description
The issue allows a local attacker to cause a denial of service (DOS) through a use after free exploit.
Recommendations
For OpenHarmony versions prior to 4.0.0, update to version 4.0.0 or later.
For OpenHarmony version 4.0.0, no specific fix is provided beyond this version, so consider this version as the baseline for mitigation.
At the moment, there is no information about additional mitigation measures for this issue.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openharmony