CVE-2022-43449

OpenHarmony-v3.1.2 and prior versions had an Arbitrary file read vulnerability via download_server. Local attackers can install an malicious application on the device and reveal any file from the filesystem that is accessible to download_server service which run with UID 1000.
Configurations

Configuration 1

cpe:2.3:a:openharmony:openharmony:*:*:*:*:*:*:*:*

Information

Published : 2022-11-03 08:15

Updated : 2022-11-07 02:18


NVD link : CVE-2022-43449

Mitre link : CVE-2022-43449

Products Affected
No products.
CWE