Harmonyos Security Vulnerabilities
Permission verification vulnerability in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
7.5AI Score
0.001EPSS
Vulnerability of unauthorized file access in the Settings app. Successful exploitation of this vulnerability may cause unauthorized file access.
5.5CVSS
5.4AI Score
0.001EPSS
Vulnerability of foreground service restrictions being bypassed in the NMS module.Successful exploitation of this vulnerability may affect service confidentiality.
6.7AI Score
0.0004EPSS
Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.
7.5CVSS
7.5AI Score
0.0005EPSS
Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
7.4AI Score
0.001EPSS
The Celia Keyboard module has a vulnerability in access control. Successful exploitation of this vulnerability may affect availability.
7.5CVSS
7.5AI Score
0.0005EPSS
Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availability and integrity.
9.1CVSS
9.1AI Score
0.0005EPSS
Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
7.4AI Score
0.001EPSS
Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read.
9.8CVSS
9.5AI Score
0.001EPSS
Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
7.4AI Score
0.001EPSS
The nearby module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect availability.
7.5CVSS
7.7AI Score
0.0005EPSS
Vulnerability of permission verification for APIs in the DownloadProviderMain module.Impact: Successful exploitation of this vulnerability will affect integrity and availability.
9.1CVSS
6.8AI Score
0.001EPSS
Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
7.4AI Score
0.001EPSS
Vulnerability of process priorities being raised in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.
7.5CVSS
7.4AI Score
0.0005EPSS
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
7.4AI Score
0.001EPSS
The sensor module has an out-of-bounds access vulnerability.Successful exploitation of this vulnerability may affect availability.
7.5CVSS
7.5AI Score
0.0005EPSS
Authorization vulnerability in the BootLoader module. Successful exploitation of this vulnerability may affect service integrity.
7.5CVSS
7.5AI Score
0.0005EPSS
Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation of this vulnerability may cause features to perform abnormally.
5.3CVSS
5.3AI Score
0.0005EPSS
launchAnyWhere vulnerability in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.
7.5CVSS
7.5AI Score
0.0005EPSS
Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.
7.5CVSS
7.4AI Score
0.0005EPSS
The iaware module has a Use-After-Free (UAF) vulnerability. Successful exploitation of this vulnerability may affect the system functions.
7.5CVSS
7.5AI Score
0.0005EPSS
Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.
7.5CVSS
7.5AI Score
0.0005EPSS
Vulnerability of serialization/deserialization mismatch in the vibration framework.Successful exploitation of this vulnerability may affect availability.
6.7AI Score
0.0004EPSS
Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability.
6.7AI Score
0.0004EPSS
Vulnerability of permission verification in some APIs in the ActivityTaskManagerService module.Impact: Successful exploitation of this vulnerability will affect availability.
6.8AI Score
0.0004EPSS
Logic vulnerabilities in the baseband.Successful exploitation of this vulnerability may affect service integrity.
7.5CVSS
6.9AI Score
0.0004EPSS
The VerifiedBoot module has a vulnerability that may cause authentication errors.Successful exploitation of this vulnerability may affect integrity.
7AI Score
0.0004EPSS
Permission management vulnerability in the lock screen module.Successful exploitation of this vulnerability may affect availability.
7.5CVSS
6.8AI Score
0.0004EPSS
Vulnerability of defects introduced in the design process in the Control Panel module.Successful exploitation of this vulnerability may cause app processes to be started by mistake.
6.6AI Score
0.0004EPSS
Vulnerability of input parameters being not strictly verified in the RSMC module.Impact: Successful exploitation of this vulnerability may cause out-of-bounds write.
6.8AI Score
0.0004EPSS
Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause features to perform abnormally.
6.6AI Score
0.0004EPSS
Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause features to perform abnormally.
7.5CVSS
6.6AI Score
0.0004EPSS
Vulnerability of improper access control in the media library module.Successful exploitation of this vulnerability may affect service availability and integrity.
7.7CVSS
6.7AI Score
0.0004EPSS
Input verification vulnerability in the account module.Successful exploitation of this vulnerability may cause features to perform abnormally.
6.7AI Score
0.0004EPSS
Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and integrity.
7AI Score
0.0004EPSS
Stack overflow vulnerability in the network acceleration module.Successful exploitation of this vulnerability may cause unauthorized file access.
9.8CVSS
7AI Score
0.0004EPSS
Vulnerability of null references in the motor module.Successful exploitation of this vulnerability may affect availability.
6.7AI Score
0.0004EPSS
Vulnerability of input parameter verification in the motor module.Successful exploitation of this vulnerability may affect availability.
7.5CVSS
6.7AI Score
0.0004EPSS
Vulnerability of permission verification in the content sharing pop-up module.Successful exploitation of this vulnerability may cause unauthorized file sharing.
6.7AI Score
0.0004EPSS
Permission control vulnerability in the package management module.Successful exploitation of this vulnerability may affect service confidentiality.
6.8AI Score
0.0004EPSS
Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect availability.
6.8AI Score
0.0004EPSS
Information management vulnerability in the Gallery module.Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
6.7AI Score
0.0004EPSS
Vulnerability of input data not being verified in the cellular data module.Successful exploitation of this vulnerability may cause out-of-bounds access.
6.7AI Score
0.0004EPSS
Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cause features to perform abnormally.
6.7AI Score
0.0004EPSS
Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service confidentiality.
7.5CVSS
6.8AI Score
0.0004EPSS
Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality.
6.7AI Score
0.0004EPSS
Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.
7.1AI Score
0.0004EPSS
Double-free vulnerability in the RSMC moduleImpact: Successful exploitation of this vulnerability will affect availability.
4.7CVSS
6.8AI Score
0.0004EPSS
Double-free vulnerability in the RSMC moduleImpact: Successful exploitation of this vulnerability will affect availability.
4.7CVSS
6.8AI Score
0.0004EPSS
Out-of-bounds write vulnerability in the RSMC module.Impact: Successful exploitation of this vulnerability will affect availability.
6.8AI Score
0.0004EPSS