Login Sign Up

CVE-2023-46767

7.5 HIGH

📋 TL;DR

This CVE describes an out-of-bounds write vulnerability in a kernel driver module that could allow attackers to cause process exceptions or potentially execute arbitrary code. It affects Huawei devices running HarmonyOS. Successful exploitation requires local access to the vulnerable system.

💻 Affected Systems

Products:
  • Huawei devices with HarmonyOS kernel
Versions: Specific HarmonyOS versions as detailed in Huawei security bulletins (November 2023)
Operating Systems: HarmonyOS
Default Config Vulnerable: ⚠️ Yes
Notes: Affects Huawei devices running vulnerable HarmonyOS kernel versions. Exact device models and versions are specified in Huawei's security bulletins.

📦 What is this software?

Emui by Huawei

View all CVEs affecting Emui →

Harmonyos by Huawei

View all CVEs affecting Harmonyos →

Harmonyos by Huawei

View all CVEs affecting Harmonyos →

Harmonyos by Huawei

View all CVEs affecting Harmonyos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local privilege escalation leading to full system compromise, arbitrary code execution at kernel level, or system crashes causing denial of service.

🟠

Likely Case

Process crashes leading to denial of service, potential information disclosure, or limited privilege escalation within the affected process context.

🟢

If Mitigated

Process isolation and proper access controls limit impact to the affected process only, preventing system-wide compromise.

🌐 Internet-Facing: LOW - This is a local vulnerability requiring access to the system, not directly exploitable over the network.
🏢 Internal Only: MEDIUM - Internal users with local access could potentially exploit this vulnerability to escalate privileges or cause system instability.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires local access and knowledge of kernel driver internals. No public exploit code has been identified.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: HarmonyOS security updates from November 2023

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2023/11/

Restart Required: Yes

Instructions:

1. Check for available system updates in device settings. 2. Apply the latest HarmonyOS security update. 3. Reboot the device to complete the patch installation.

🔧 Temporary Workarounds

Restrict local access

all

Limit physical and remote local access to affected devices to reduce attack surface

Disable unnecessary kernel modules

linux

If possible, disable or remove the affected kernel driver module if not required for system operation

# Check if module is loaded: lsmod | grep [module_name]
# Remove module: rmmod [module_name]

🧯 If You Can't Patch

  • Implement strict access controls to limit who has local access to affected systems
  • Monitor system logs for unusual process crashes or kernel panic events

🔍 How to Verify

Check if Vulnerable:

Check HarmonyOS version in device settings > About phone > HarmonyOS version and compare against Huawei's security bulletins

Check Version:

getprop ro.build.version.harmony

Verify Fix Applied:

Verify HarmonyOS version after update shows a version later than the vulnerable versions listed in Huawei's November 2023 security bulletins

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • Process crash dumps
  • Unexpected system reboots
  • Driver module loading errors

Network Indicators:

  • No direct network indicators as this is a local vulnerability

SIEM Query:

source="kernel" AND ("panic" OR "oops" OR "segfault") AND process="[affected_driver]"

📊 Metadata

CVE ID: CVE-2023-46767
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-125
Published: November 8, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-46767, you might also want to check these:

CVE-2021-41556 10.0

CVE-2021-41556 is a critical out-of-bounds read vulnerability in Squirrel scripting language that al...

Same vulnerability type (CWE-125)
CVE-2024-22004 10.0

This vulnerability allows attackers with privileged access on Linux non-secure operating systems to ...

Same vulnerability type (CWE-125)
CVE-2021-21777 10.0

CVE-2021-21777 is a critical out-of-bounds read vulnerability in the Ethernet/IP UDP handler of OpEN...

Same vulnerability type (CWE-125)