Medium severity6.2NVD Advisory· Published Mar 10, 2023· Updated Jun 17, 2026
CVE-2023-25947
CVE-2023-25947
Description
The bundle management subsystem within OpenHarmony-v3.1.4 and prior versions has a null pointer reference vulnerability which local attackers can exploit this vulnerability to cause a DoS attack to the system when installing a malicious HAP package.
Affected products
2<=3.1.4+ 1 more
- (no CPE)range: <=3.1.4
- (no CPE)range: 3.1
Patches
Vulnerability mechanics
References
1- gitee.com/openharmony/security/blob/master/en/security-disclosure/2023/2023-03.mdnvdThird Party Advisory
News mentions
0No linked articles in our index yet.