CVE-2023-39392 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2023-39392

CWE

https://cwe.mitre.org/data/definitions/16.html

Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to be maliciously modified and overwritten.

Affected Software

Name	Vendor	Start Version	End Version
Emui	Huawei	12.0.1 (including)	12.0.1 (including)
Emui	Huawei	13.0.0 (including)	13.0.0 (including)
Harmonyos	Huawei	2.0.1 (including)	2.0.1 (including)
Harmonyos	Huawei	3.0.0 (including)	3.0.0 (including)
Harmonyos	Huawei	3.1.0 (including)	3.1.0 (including)

References

https://consumer.huawei.com/en/support/bulletin/2023/8/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725
https://consumer.huawei.com/en/support/bulletin/2023/8/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725