Email Injection Vulnerability Threatens Service Confidentiality, Integrity, and Availability
CVE-2023-52381

Currently unrated

Key Information:

Vendor

Huawei
Status
Harmonyos
Emui
Vendor
CVE Published:
18 February 2024

What is CVE-2023-52381?

The Huawei email module contains a script injection vulnerability that could enable attackers to manipulate user inputs, potentially leading to unauthorized actions within the application. If successfully exploited, this vulnerability could compromise various aspects of service functionality, including the confidentiality of user data and the overall integrity of services. Organizations using the affected email module should prioritize security updates and assess their exposure to this issue.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

EMUI 13.0.0

EMUI 12.0.0

HarmonyOS 4.0.0

References

https://consumer.huawei.com/en/support/bulletin/2024/2/
https://device.harmonyos.com/cn/docs/security/update/secu...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.