Improper Default Permissions in OpenHarmony v3.2.2 and Prior Versions Allow Local Attacker to Access Confidential Information

Improper Default Permissions in OpenHarmony v3.2.2 and Prior Versions Allow Local Attacker to Access Confidential Information

CVE-2023-42774 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information through incorrect default permissions.

Learn more about our Web Application Penetration Testing UK.