CVE-2023-0036EPSS p8.0%
CVE-2023-0036CVE-2023-0036
openatom / openharmony
Description
platform_callback_stub in misc subsystem within OpenHarmony-v3.0.5 and prior versions has an authentication bypass vulnerability which allows an "SA relay attack".Local attackers can bypass authentication and attack other SAs with high privilege.
Scoring
| CVSS | 6.5 () |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N |
| EPSS | 0.18% probability of exploitation · percentile 8.0% · 2026-06-19T12:03:05Z |
| Last modified | 2026-06-17 |