CVE-2023-22301

Summary

The kernel subsystem hmdfs within OpenHarmony-v3.1.5 and prior versions has an

arbitrary memory accessing vulnerability which network attackers can launch a remote attack to obtain kernel memory data of the target system.

Affected Software

VendorProductVersion RangeStatus
OpenHarmonyOpenHarmony3.1 <= 3.1.5affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References