in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps
A remote code execution vulnerability exists in OpenHarmony v6.0 and prior versions, allowing a remote attacker to execute arbitrary code in pre-installed apps. This can be exploited by sending malicious input to the affected system, resulting in unauthorized access and control. The vulnerability is caused by inadequate input validation and sanitization.
in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps.
Remote attackers are at risk of exploiting this vulnerability to execute arbitrary code, posing a high risk to the system's security and data integrity.
Remediation Recommended
This vulnerability carries significant risk. Schedule patching in your next cycle.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
0
Affected Products
1
References
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Exploitability
Impact