CVE-2026-24792
HIGHDescription
in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps.
Is your site exposed to CVE-2026-24792?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
EPSS — Exploit Prediction
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
Weakness Type (CWE)
References
Frequently Asked Questions
What is CVE-2026-24792? +
How severe is CVE-2026-24792? +
How do I check if I'm vulnerable to CVE-2026-24792? +
Related Vulnerabilities
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to …
A signal handler in sshd(8) may call a logging function that is not async-signal-safe. The signal handler is invoked when …
In the Linux kernel, the following vulnerability has been resolved: zram: fix use-after-free in zram_bvec_write_partial() zram_read_page() picks the sync or …
A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). If a remote attacker does …
Strapi is an open source headless content management system. Strapi versions prior to 5.20.0 contain a CORS misconfiguration vulnerability in …
Concurrency and locking defects in GSS-TSIG