CVE-2022-38984

The CVE-2022-38984 issue concerns Huawei/HarmonyOS HIPP module where data transferred in kernel space is not verified. This can cause an out-of-bounds read, impacting data confidentiality. Documents confirm the vulnerability, its kernel-space data handling root cause, and the confidentiality-impa...

CVE-2022-38986

The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability...

CVE-2022-39011

CVE-2022-39011 affects Huawei HarmonyOS HISP module. The vulnerability allows bypassing the check of data transferred in kernel space, which could lead to unauthorized access to the HISP module. Public documents describe the root cause as a bypass of kernel-space data validation and an impact of ...

PT-2022-24642 · Unknown · Hipp Module

Name of the Vulnerable Software and Affected Versions: HIPP module affected versions not specified Description: The issue concerns a vulnerability in the HIPP module that allows bypassing the check of the data transferred in the kernel space. Successful exploitation may cause out-of-bounds access...

CVE-2022-38986

The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability...

CVE-2022-39011

The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module...

CVE-2022-38984

The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

CVE-2022-38998

The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

CVE-2022-38998

CVE-2022-38998 affects Huawei HarmonyOS, specifically the HISP module. The vulnerability arises from an input validation error where data transferred from kernel space is not properly checked, leading to an out-of-bounds read that compromises confidentiality. The issue is exploitable remotely (ne...

CVE-2022-38984

The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

CVE-2022-38986

CVE-2022-38986 affects the HIPP module used in Huawei EMUI/Japanese Huawei devices. The vulnerability is a bypass of the data-transfer check in kernel space, which can enable out-of-bounds access to the HIPP module and page-table tampering, potentially compromising device confidentiality and avai...

CVE-2022-38998

The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

CVE-2022-0854

A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMAFROMDEVICE. This flaw allows a local user to read random memory from the kernel space...

CVE-2022-0854

A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMAFROMDEVICE. This flaw allows a local user to read random memory from the kernel space...

in luigirizzo/netmap

Description In the Netmap source code, calls to DbgPrint; can be found to contain a formatting argument %p to be specific yet no argument, this would in most cases lead to nearby data being printed to the debug stream. Impact This vulnerability is capable of allowing an attacker to read data from...

CVE-2021-41073

A flaw was found in looprwiter in fs/iouring.c in the Linux kernel. This problem gives the ability to a local user with a normal user privilege to free a user-defined kernel space buffer. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the...

CVE-2021-22326

A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability...

Design/Logic Flaw

A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability...

CVE-2021-22326

A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS A vulnerability exists in the debug function code in the selinux module of some Huawei products that allows the user state to have the abili...