23 matches found
EUVD-2024-19462
Malicious code in bioql PyPI...
CVE-2024-12082
OpenHarmony is affected by CVE-2024-12082 in v4.0.0 and earlier, where an out-of-bounds read leads to information leakage via local access. The root cause is an out-of-bounds read in vulnerable components; impact is confidentiality (information disclosure) with no integrity/availability impact st...
CVE-2024-47402
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through out-of-bounds read...
CVE-2024-47402 Liteos_a has an Out-of-bounds Read vulnerability
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through out-of-bounds read...
CVE-2024-39612 Background Task Manager has an out-of-bounds read permission bypass vulnerability
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read...
CVE-2024-39612
OpenHarmony CVE-2024-39612 affects OpenHarmony v4.0.0 and earlier. The issue is an out-of-bounds read that enables a local attacker to cause information leakage. Multiple sources (including Red Hat and CVE records) confirm the vulnerability description; exploitation is local, with low attack comp...
CVE-2024-37077 Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write...
CVE-2024-37185 Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write...
CVE-2024-36260 Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write...
CVE-2024-36278 Arkcompiler Ets Runtime has a type confusion vulnerability
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion...
CVE-2024-36278 Arkcompiler Ets Runtime has a type confusion vulnerability
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion...
CVE-2024-36243 Arkcompiler Ets Runtime has an out-of-bounds read vulnerability
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write...
CVE-2024-37030 Arkcompiler Ets Runtime has a use after free vulnerability
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through use after free...
CVE-2024-31071
OpenHarmony is affected by CVE-2024-31071: prior to v4.0.0, a local attacker can trigger a type confusion vulnerability that causes applications to crash. The issue is described as a local, low-severity fault with availability impact (availability impact is noted as LOW; attack vector LOCAL; priv...
CVE-2024-31071 Arkcompiler Ets Runtime has a type confusion vulnerability
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion...
CVE-2024-27217
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free...
CVE-2024-31078
OpenHarmony suffers a local vulnerability (CVE-2024-31078) in v4.0.0 and earlier where a NULL pointer dereference can crash a service. The issue is described across multiple sources as a local attack leading to a service crash, with the OpenHarmony lineage prior to 4.0.0 implicated. Root cause de...
CVE-2024-31078 Bluetooth Service has a use after free vulnerability
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL pointer dereference...
CVE-2024-28226 Fs has an improper input validation vulnerability
in OpenHarmony v4.0.0 and prior versions allow a remote attacker cause DOS through improper input...
CVE-2024-24581
OpenHarmony vulnerability CVE-2024-24581 affects OpenHarmony v4.0.0 and earlier, caused by an out-of-bounds write in Arkcompiler runtime, enabling a local attacker to achieve arbitrary code execution. The issue is verified across multiple sources in the connected documents, which describe the sam...