CVE-2023-34165

Summary

Unauthorized access vulnerability in the Save for later feature provided by AI Touch.Successful exploitation of this vulnerability may cause third-party apps to forge a URI for unauthorized access with zero permissions.

Affected Software

VendorProductVersion RangeStatus
HuaweiHarmonyOS2.1.0affected

Weaknesses

  • Improper Validation of Integrity Check Value

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References