CVE-2023-41306

Summary

Vulnerability of mutex management in the bone voice ID trusted application (TA) module. Successful exploitation of this vulnerability may cause the bone voice ID feature to be unavailable.

Affected Software

VendorProductVersion RangeStatus
HuaweiHarmonyOS2.0.1affected
HuaweiHarmonyOS2.0.0affected
HuaweiEMUI12.0.1affected
HuaweiEMUI12.0.0affected

Weaknesses

  • CWE-362: CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References