CVE-2024-36500
Privilege escalation vulnerability in the AMS module Impact: Successful exploitation
Description
Description
Privilege escalation vulnerability in the AMS module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Affected Vendors & Products
| Vendor | Product | Version |
|---|---|---|
| huawei | emui | 13.0.0 |
| huawei | emui | 14.0.0 |
| huawei | harmonyos | 3.0.0 |
| huawei | harmonyos | 3.1.0 |
| huawei | harmonyos | 4.0.0 |
| huawei | harmonyos | 4.2.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-269 | The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor. |
| CWE-NVD-CWE-noinfo |
Attack-Flow Graph
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart
Meta Information
CVE Publication Date:
2024-06-14
CVE Last Modified Date:
2024-11-21
Report Generation Date:
2025-11-06
EPSS Last Evaluated Date:
2025-08-20
NVD Report Link: