Incorrect Privilege Assignment Affecting Honor Devices
CVE-2024-47148

5.5MEDIUM

Key Information:

Vendor: Honor
Status: Magic Os
Vendor: CVE Published:; 26 December 2024

What is CVE-2024-47148?

Certain products from Honor are susceptible to an incorrect privilege assignment vulnerability. This issue allows attackers to exploit the device, potentially resulting in unexpected service exceptions that could hinder normal operations. Users and administrators of affected Honor devices should prioritize security practices to mitigate any risks associated with this vulnerability.

Affected Version(s)

Magic OS 8.0 < 8.0.1.112

References

https://www.honor.com/global/security/cve-2024-47148/

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 26, 2024
Vulnerability Reserved
Sep 19, 2024

Credit

ycmint working with ADLab of VenusTech