CVE-2023-39404

Summary

Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vulnerability may cause the device to restart.

Affected Software

VendorProductVersion RangeStatus
HuaweiHarmonyOS3.1.0affected
HuaweiHarmonyOS3.0.0affected
HuaweiEMUI13.0.0affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References