Stack Overflow Vulnerability in OpenHarmony-v3.1.2 and Prior Versions: Potential DoS Attack on Network Devices

Stack Overflow Vulnerability in OpenHarmony-v3.1.2 and Prior Versions: Potential DoS Attack on Network Devices

CVE-2022-36423 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

OpenHarmony-v3.1.2 and prior versions have an incorrect configuration of the cJSON library, which leads a Stack overflow vulnerability during recursive parsing. LAN attackers can lead a DoS attack to all network devices.

Learn more about our Cis Benchmark Audit For Network Devices.