Vulnerabilities > CVE-2022-38701 - Out-of-bounds Write vulnerability in multiple products

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

local

low complexity

openharmony

openatom

CWE-787

NVD

Published: 2022-09-09

Updated: 2024-09-09

Summary

OpenHarmony-v3.1.2 and prior versions have a heap overflow vulnerability. Local attackers can trigger a heap overflow and get network sensitive information.

Vulnerable Configurations

Part	Description	Count
Application	Openharmony Openharmony Openharmony *	1
OS	Openatom Openatom Openharmony 3.1 Openatom Openharmony 3.1.1 Openatom Openharmony 3.1.2	4

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2022/2022-09.md