CVE-2023-44093 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2023-44093

CWE

https://cwe.mitre.org/data/definitions/.html

Vulnerability of package names public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

Affected Software

Name	Vendor	Start Version	End Version
Harmonyos	Huawei	2.0 (including)	2.0 (including)
Harmonyos	Huawei	2.0.1 (including)	2.0.1 (including)
Harmonyos	Huawei	2.1.0 (including)	2.1.0 (including)
Harmonyos	Huawei	3.0.0 (including)	3.0.0 (including)
Harmonyos	Huawei	3.1.0 (including)	3.1.0 (including)

References

https://consumer.huawei.com/en/support/bulletin/2023/10/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202310-0000001663676540