01642 06 11 11 Arrange Call

Authentication Bypass Vulnerability in OpenHarmony-v3.0.5 and Prior Versions: SA Relay Attack

CVE-2023-0036 · MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

CVE-2023-0036

platform_callback_stub in misc subsystem within OpenHarmony-v3.0.5 and prior versions has an authentication bypass vulnerability which allows an "SA relay attack".Local attackers can bypass authentication and attack other SAs with high privilege.

Learn more about our Web Application Penetration Testing UK.