Huawei HarmonyOS Improper Access Control Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from an Improper Access Control vulnerability, which stems from an Improper Access Control vulnerability in the Xiao Yi Input Method...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from an Improper Access Control vulnerability, which stems from an Improper Access Control vulnerability in the Xiao Yi Input Method...

Huawei HarmonyOS Security Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a sensor module access out-of-bounds vulnerability. Successful exploitation of this...

Huawei HarmonyOS Security Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from an input validation type vulnerability in the fingerprint module. Integrity and usabili...

Huawei EMUI 安全漏洞

Huawei EMUI is an Android-based mobile operating system developed by Chinese company Huawei. A security vulnerability exists in Huawei EMUI version 12.0.0, which stems from a configuration flaw in the Secure Operating System module, and successful exploitation of this vulnerability will impact...

Huawei EMUI 安全漏洞

Huawei EMUI is an Android-based mobile operating system developed by Chinese company Huawei. A security vulnerability exists in Huawei EMUI version 12.0.0, which stems from a configuration flaw in the Secure Operating System module, and successful exploitation of this vulnerability will impact...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from the risk of hijacking the HwWatchHealth app, which can be exploited by an attacker to...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from an override call issue on Huawei phones and PADs, which can be exploited by an attacke...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which originates from a risk of hijacking of the Gallery application. It affects the usability of the...

Huawei HarmonyOS 缓冲区错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from an out-of-bounds read vulnerability in the power consumption module. An attacker...

Inefficiency in the Dutch Auction due to lower duration

Lines of code Vulnerability details The vulnerability or bug is in the implementation of the function getDutchAuctionStrike The AUCTIONDURATION is defined as 24 hours, and consider that the dutchAuctionReserveStrike or reserveStrike will never be set to 0 by user. Now if a vault is created with...

Huawei HarmonyOS Licensing Issue Vulnerability (CNVD-2022-44618)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. Huawei HarmonyOS is vulnerable to licensing issues. Successful exploitation of this vulnerability could result in a usability impact. An attacker could use this vulnerability to bypass Web authentication and gain administrati...

Huawei HarmonyOS 授权问题漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. Huawei HarmonyOS is vulnerable to licensing issues. Successful exploitation of this vulnerability could result in a usability impact. An attacker could use this vulnerability to bypass Web authentication and gain administrati...

Huawei Smartphone Out-of-Bounds Reading Vulnerability

Huawei Smartphone is a cell phone product launched by Huawei. Huawei Smartphone is an out-of-bounds read vulnerability in Huawei HarmonyOS, a full-scenario distributed operating system for the Internet of Everything. The vulnerability stems from an out-of-bounds read vulnerability in a module in...

HUAWEI EMUI 安全漏洞

Huawei Emui is a mobile operating system developed on Android. Magic Ui is a mobile operating system developed on Android. Huawei Emui and Magic UI are vulnerable to incorrect buffer size calculation, which can be exploited by attackers to impact usability...

HUAWEI EMUI 缓冲区错误漏洞

Huawei Emui is a mobile operating system developed on Android. magic Ui is a mobile operating system developed on Android. heap buffer overflow vulnerability exists in Huawei Emui and Magic UI video framework, which can be exploited by attackers to impact usability...

HUAWEI EMUI/Magic UI 安全漏洞

Huawei Emui is a mobile operating system developed on Android. Magic Ui is a mobile operating system developed on Android. Huawei Emui and Magic UI are vulnerable to incorrect buffer size calculation, which can be exploited by attackers to impact usability...

LIM OpenEXR 输入验证错误漏洞

Industrial Light And Magic LIM OpenEXR is an image file format from Industrial Light and Magic LIM, USA, for high dynamic range HDR images. An input validation error vulnerability exists in OpenEXR B44 uncompression, which can be exploited by an attacker to trigger a shift overflow and potentiall...

Binary vulnerability in jerryscript (CNVD-2020-72373)

JerryScript is a lightweight JavaScript engine that runs on restricted devices. A binary vulnerability exists in jerryscript, which can be exploited by attackers to compromise usability...

Binary vulnerability in jerryscript (CNVD-2020-72374)

erryScript is a lightweight JavaScript engine that runs on restricted devices. A binary vulnerability exists in jerryscript. An attacker could exploit this vulnerability to cause an impact on usability...