Magic Ui
CVE-2023-6939
MEDIUM
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
1DescriptionNVD
Some Honor products are affected by type confusion vulnerability, successful exploitation could cause denial of service.
AnalysisAI
Some Honor products are affected by type confusion vulnerability, successful exploitation could cause denial of service. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified as Access of Resource Using Incompatible Type (Type Confusion) (CWE-843), which allows attackers to execute arbitrary code by exploiting type confusion in the application. Some Honor products are affected by type confusion vulnerability, successful exploitation could cause denial of service. Affected products include: Hihonor Magic Ui.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Enforce strict type checking, use type-safe languages, validate object types before operations.
Double free vulnerability in the storage module. Rated critical severity (CVSS 9.8), this vulnerability is remotely expl
The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will caus
The AOD module has a vulnerability in permission assignment. Rated critical severity (CVSS 9.8), this vulnerability is r
The SystemUI module has a privilege escalation vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is
The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-p
There is a Heap-based buffer overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability m
There is an UAF vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to
There is a Parameter injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may caus
There is a Memory out-of-bounds access vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability
There is a vulnerability of tampering with the kernel in Huawei Smartphone.Successful exploitation of this vulnerability
There is a Kernel crash vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may escalate pe
There is a vulnerability of tampering with the kernel in Huawei Smartphone.Successful exploitation of this vulnerability
Same technique Memory Corruption
View allShare
External POC / Exploit Code
Leaving vuln.today