Emui Security Vulnerabilities

CVE-2023-52378

Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cause features to perform abnormally.

CVE-2023-52379

Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52380

Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52381

Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

CVE-2023-52383

Double-free vulnerability in the RSMC moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52384

Double-free vulnerability in the RSMC moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52385

Out-of-bounds write vulnerability in the RSMC module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52386

Out-of-bounds write vulnerability in the RSMC module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52387

Resource reuse vulnerability in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52388

Permission control vulnerability in the clock module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52537

Vulnerability of package name verification being bypassed in the HwIms module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52538

Vulnerability of package name verification being bypassed in the HwIms module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52539

Permission verification vulnerability in the Settings module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52540

Vulnerability of improper authentication in the Iaware module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52541

Authentication vulnerability in the API for app pre-loading.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52542

Permission verification vulnerability in the system module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52543

Permission verification vulnerability in the system module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52544

Vulnerability of file path verification being bypassed in the email module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52545

Vulnerability of undefined permissions in the Calendar app.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52546

Vulnerability of package name verification being bypassed in the Calendar app.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52549

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52550

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52551

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52552

Input verification vulnerability in the power module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52553

Race condition vulnerability in the Wi-Fi module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52554

Permission control vulnerability in the Bluetooth module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52713

Vulnerability of improper permission control in the window management module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVE-2023-52714

Vulnerability of defects introduced in the design process in the hwnff module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52716

Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52717

Permission verification vulnerability in the lock screen module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52719

Privilege escalation vulnerability in the PMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52720

Race condition vulnerability in the soundtrigger moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2023-52721

The WindowManager module has a vulnerability in permission control.Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2023-5801

Vulnerability of identity verification being bypassed in the face unlock module. Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVE-2023-6273

Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVE-2023-7265

Permission verification vulnerability in the lock screen moduleImpact: Successful exploitation of this vulnerability may affect availability

CVE-2023-7271

Privilege escalation vulnerability in the NMS moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-27896

Input verification vulnerability in the log module.Impact: Successful exploitation of this vulnerability can affect integrity.

CVE-2024-27897

Input verification vulnerability in the call module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-30413

Vulnerability of improper permission control in the window management module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-30414

Command injection vulnerability in the AccountManager module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-30415

Vulnerability of improper permission control in the window management module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-30416

Use After Free (UAF) vulnerability in the underlying driver module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-30417

Path traversal vulnerability in the Bluetooth-based sharing module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-30418

Vulnerability of insufficient permission verification in the app management module.Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-32989

Insufficient verification vulnerability in the system sharing pop-up moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-32990

Permission verification vulnerability in the system sharing pop-up moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-32991

Permission verification vulnerability in the wpa_supplicant moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-32992

Insufficient verification vulnerability in the baseband moduleImpact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-32993

Out-of-bounds access vulnerability in the memory moduleImpact: Successful exploitation of this vulnerability will affect availability.