CVE-2023-39381
https://notcve.org/view.php?id=CVE-2023-39381
Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-20: Improper Input Validation CWE-116: Improper Encoding or Escaping of Output •
CVE-2023-39405
https://notcve.org/view.php?id=CVE-2023-39405
Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation of this vulnerability may cause other apps to be executed with escalated privileges. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVE-2023-39393
https://notcve.org/view.php?id=CVE-2023-39393
Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation of this vulnerability may cause ServiceWifiResources to be maliciously modified and overwritten. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-347: Improper Verification of Cryptographic Signature •
CVE-2023-39392
https://notcve.org/view.php?id=CVE-2023-39392
Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to be maliciously modified and overwritten. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-16: Configuration CWE-347: Improper Verification of Cryptographic Signature •
CVE-2023-39389
https://notcve.org/view.php?id=CVE-2023-39389
Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability. • https://consumer.huawei.com/en/support/bulletin/2023/8 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725 • CWE-20: Improper Input Validation CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-1285: Improper Validation of Specified Index, Position, or Offset in Input •