CVE Vulnerabilities

CVE-2022-36423

Published: Sep 09, 2022 | Modified: Nov 21, 2024
CVSS 3.x
7.4
HIGH
Source:
NVD
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

OpenHarmony-v3.1.2 and prior versions have an incorrect configuration of the cJSON library, which leads a Stack overflow vulnerability during recursive parsing. LAN attackers can lead a DoS attack to all network devices.

Affected Software

Name Vendor Start Version End Version
Openharmony Openharmony 1.1.0 (including) 1.1.5 (including)
Openharmony Openharmony 3.0 (including) 3.0.5 (including)
Openharmony Openatom 3.1 (including) 3.1.2 (including)

References