CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39401
https://notcve.org/view.php?id=CVE-2023-39401
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-285: Improper Authorization •
CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39400
https://notcve.org/view.php?id=CVE-2023-39400
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-285: Improper Authorization •
CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39399
https://notcve.org/view.php?id=CVE-2023-39399
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-275: Permission Issues CWE-285: Improper Authorization •
CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39398
https://notcve.org/view.php?id=CVE-2023-39398
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-275: Permission Issues CWE-285: Improper Authorization •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-39395
https://notcve.org/view.php?id=CVE-2023-39395
Mismatch vulnerability in the serialization process in the communication system. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-19: Data Processing Errors •