High severity8.4NVD Advisory· Published Nov 3, 2022· Updated Jun 17, 2026
CVE-2022-43451
CVE-2022-43451
Description
OpenHarmony-v3.1.2 and prior versions had an Multiple path traversal vulnerability in appspawn and nwebspawn services. Local attackers can create arbitrary directories or escape application sandbox.If chained with other vulnerabilities it would allow an unprivileged process to gain full root privileges.
Affected products
2<=3.1.2+ 1 more
- (no CPE)range: <=3.1.2
- (no CPE)range: 3.1.0
Patches
Vulnerability mechanics
References
1- gitee.com/openharmony/security/blob/master/en/security-disclosure/2022/2022-11.mdnvdThird Party Advisory
News mentions
0No linked articles in our index yet.