Authentication Bypass Vulnerability in softbus_client_stub in OpenHarmony-v3.0.5 and Prior Versions

Authentication Bypass Vulnerability in softbus_client_stub in OpenHarmony-v3.0.5 and Prior Versions

CVE-2023-0035 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

softbus_client_stub in communication subsystem within OpenHarmony-v3.0.5 and prior versions has an authentication bypass vulnerability which allows an "SA relay attack".Local attackers can bypass authentication and attack other SAs with high privilege.

Learn more about our Web Application Penetration Testing UK.