CVE-2023-7263

Name of the Vulnerable Software and Affected Versions: Huawei home music system products (affected versions not specified)

Description: The issue is related to a path traversal vulnerability in some Huawei home music system products. This vulnerability may allow an attacker to delete or change file permissions unauthorizedly. The vulnerability is also associated with incorrect restriction of the directory path name with limited access in the HarmonyOS AILife Audio Service platform, which could allow a remote attacker to elevate privileges and gain read, modify, or delete access to files.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.