Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-22092

in OpenHarmony v3.2.4 and prior versions allow a remote attacker bypass permission verification to install apps, although these require user action.

Published

2024-04-02T07:15:41.700

Last Modified

2025-01-27T17:54:44.350

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.7 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-290
  • Type: Primary
    CWE-290
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System openatom openharmony ≤ 3.2.4 Yes
References