CVE-2023-41306

LOW

Huawei EMUI and HarmonyOS - Denial of Service via Bone Voice ID Trusted Application Mutex Mismanagement

Title source: llm

Description

Vulnerability of mutex management in the bone voice ID trusted application (TA) module. Successful exploitation of this vulnerability may cause the bone voice ID feature to be unavailable.

References (2)

Core 2

Core References

Vendor Advisory

https://consumer.huawei.com/en/support/bulletin/2023/9/

Vendor Advisory

https://device.harmonyos.com/en/docs/security/update/security-bulletins-202309-0000001638925158

Scores

CVSS v3 3.7

EPSS 0.0008

EPSS Percentile 23.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-362

Status published

Products (4)

huawei/emui 12.0

huawei/emui 12.0.1

huawei/harmonyos 2.0.0

huawei/harmonyos 2.0.1

Published Sep 27, 2023

Tracked Since Feb 18, 2026