THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-28951

Arkcompiler runtime has a use after free vulnerability

Reserved:2024-03-15
Published:2024-04-02
Updated:2024-06-10

Description

in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.



MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-416 Use After Free

Product status

Default status
unaffected

v4.0.0 before v4.0.1
affected

References

https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-04.md

cve.org CVE-2024-28951

nvd.nist.gov CVE-2024-28951

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-28951