CVE-2023-23430

CVSS 3.3 LOWEPSS 0.3%CWE-269

In short

Some Honor devices have a flaw where certain permissions are incorrectly assigned, allowing processes to access features they shouldn't. This can cause device services to stop working properly.

Technical detail

Incorrect privilege assignment (CWE-269) in Honor products allows unauthorized processes to obtain elevated permissions, potentially leading to service disruption or unauthorized access to device functionality. Exploitation requires local access and results in device service exceptions.

Summary generated and translated by AI from the official description.

Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Honor · com.hihonor.magichome

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.hihonor.com/global/security/cve-2023-23430/