Lucene search

K
HuaweiEmui11.0.1

230 matches found

CVE
CVE
added 2022/01/10 2:10 p.m.51 views

CVE-2021-40010

The bone voice ID TA has a heap overflow vulnerability.Successful exploitation of this vulnerability may result in malicious code execution.

9.8CVSS9.7AI score0.00842EPSS
CVE
CVE
added 2022/09/16 6:15 p.m.51 views

CVE-2021-40017

The HW_KEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access.

9.8CVSS9.4AI score0.00162EPSS
CVE
CVE
added 2022/12/20 9:15 p.m.51 views

CVE-2022-41596

The system tool has inconsistent serialization and deserialization. Successful exploitation of this vulnerability will cause unauthorized startup of components.

7.5CVSS7.5AI score0.00082EPSS
CVE
CVE
added 2022/12/20 9:15 p.m.51 views

CVE-2022-46321

The Wi-Fi module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.5AI score0.0009EPSS
CVE
CVE
added 2023/03/27 10:15 p.m.51 views

CVE-2022-48349

The control component has a spoofing vulnerability. Successful exploitation of this vulnerability may affect confidentiality and availability.

9.1CVSS9AI score0.00102EPSS
CVE
CVE
added 2023/06/19 5:15 p.m.51 views

CVE-2023-34156

Vulnerability of services denied by early fingerprint APIs on HarmonyOS products.Successful exploitation of this vulnerability may cause services to be denied.

5.3CVSS5.2AI score0.00038EPSS
CVE
CVE
added 2023/10/11 11:15 a.m.51 views

CVE-2023-44093

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00081EPSS
CVE
CVE
added 2022/10/14 4:15 p.m.50 views

CVE-2022-41582

The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability.

7.5CVSS7.5AI score0.00077EPSS
CVE
CVE
added 2022/12/20 9:15 p.m.50 views

CVE-2022-41591

The backup module has a path traversal vulnerability. Successful exploitation of this vulnerability causes unauthorized access to other system files.

7.5CVSS7.4AI score0.00092EPSS
CVE
CVE
added 2022/11/09 9:15 p.m.50 views

CVE-2022-44563

There is a race condition vulnerability in SD upgrade mode. Successful exploitation of this vulnerability may affect data confidentiality.

5.9CVSS5.8AI score0.00062EPSS
CVE
CVE
added 2023/03/27 10:15 p.m.50 views

CVE-2022-48357

Some products have the double fetch vulnerability. Successful exploitation of this vulnerability may cause denial of service (DoS) attacks to the kernel.

7.5CVSS7.4AI score0.00098EPSS
CVE
CVE
added 2023/03/27 10:15 p.m.50 views

CVE-2022-48359

The recovery mode for updates has a vulnerability that causes arbitrary disk modification. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.6AI score0.00173EPSS
CVE
CVE
added 2023/05/20 3:15 p.m.50 views

CVE-2023-1693

The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.8AI score0.00092EPSS
CVE
CVE
added 2023/03/27 10:15 p.m.50 views

CVE-2023-26547

The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

7.8CVSS7.6AI score0.00042EPSS
CVE
CVE
added 2021/06/03 4:15 p.m.49 views

CVE-2021-22316

There is a Missing Authentication for Critical Function vulnerability in Huawei Smartphone. Attackers with physical access to the device can thereby exploit this vulnerability. A successful exploitation of this vulnerability can compromise the device's data security and functional availability.

6.8CVSS6.5AI score0.00024EPSS
CVE
CVE
added 2021/07/01 12:15 p.m.49 views

CVE-2021-22343

There is a Configuration Defect vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service integrity and availability.

9.1CVSS9.1AI score0.00182EPSS
CVE
CVE
added 2022/09/16 6:15 p.m.49 views

CVE-2022-39004

The MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks.

7.5CVSS7.5AI score0.00112EPSS
CVE
CVE
added 2022/11/09 9:15 p.m.49 views

CVE-2022-44549

The LBS module has a vulnerability in geofencing API access. Successful exploitation of this vulnerability may cause third-party apps to access the geofencing APIs without authorization, affecting user confidentiality.

7.5CVSS7.4AI score0.0008EPSS
CVE
CVE
added 2023/06/19 5:15 p.m.49 views

CVE-2022-48496

Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized.

7.5CVSS7.4AI score0.00048EPSS
CVE
CVE
added 2023/08/13 12:15 p.m.49 views

CVE-2023-39405

Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation of this vulnerability may cause other apps to be executed with escalated privileges.

9.8CVSS9.3AI score0.00104EPSS
CVE
CVE
added 2023/10/11 12:15 p.m.49 views

CVE-2023-44104

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00069EPSS
CVE
CVE
added 2023/10/11 1:15 p.m.49 views

CVE-2023-44118

Vulnerability of undefined permissions in the MeeTime module.Successful exploitation of this vulnerability will affect availability and confidentiality.

9.1CVSS9.1AI score0.00077EPSS
CVE
CVE
added 2022/07/12 2:15 p.m.48 views

CVE-2022-34735

The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability.

7.8CVSS7.3AI score0.0015EPSS
CVE
CVE
added 2022/07/12 2:15 p.m.48 views

CVE-2022-34738

The SystemUI module has a vulnerability in permission control. If this vulnerability is successfully exploited, users are unaware of the service running in the background.

7.5CVSS7.5AI score0.00098EPSS
CVE
CVE
added 2022/09/16 6:15 p.m.48 views

CVE-2022-39000

The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup.

9.8CVSS9.3AI score0.00162EPSS
CVE
CVE
added 2022/10/14 4:15 p.m.48 views

CVE-2022-41584

The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting.

7.8CVSS7.4AI score0.00031EPSS
CVE
CVE
added 2022/11/09 9:15 p.m.48 views

CVE-2022-44550

The graphics display module has a UAF vulnerability when traversing graphic layers. Successful exploitation of this vulnerability may affect system availability.

7.5CVSS7.5AI score0.00084EPSS
CVE
CVE
added 2023/03/27 10:15 p.m.48 views

CVE-2022-48291

The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

6.5CVSS6.7AI score0.00015EPSS
CVE
CVE
added 2023/05/20 3:15 p.m.48 views

CVE-2023-1692

The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.0009EPSS
CVE
CVE
added 2023/08/13 1:15 p.m.48 views

CVE-2023-39387

Vulnerability of permission control in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

5.3CVSS5.2AI score0.00057EPSS
CVE
CVE
added 2023/09/27 3:19 p.m.48 views

CVE-2023-41305

Vulnerability of 5G messages being sent without being encrypted in a VPN environment in the SMS message module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.4AI score0.00096EPSS
CVE
CVE
added 2022/07/12 2:15 p.m.47 views

CVE-2022-34740

The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability may cause exceptions in NFC card registration, deletion, and activation.

6.5CVSS6.7AI score0.00033EPSS
CVE
CVE
added 2022/10/14 4:15 p.m.47 views

CVE-2022-41585

The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting.

7.8CVSS7.4AI score0.00031EPSS
CVE
CVE
added 2022/12/20 9:15 p.m.47 views

CVE-2022-41599

The system service has a vulnerability that causes incorrect return values. Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.5AI score0.00078EPSS
CVE
CVE
added 2022/12/20 9:15 p.m.47 views

CVE-2022-46312

The application management module has a vulnerability in permission verification. Successful exploitation of this vulnerability causes unexpected clear of device applications.

7.5CVSS7.4AI score0.00045EPSS
CVE
CVE
added 2023/02/09 5:15 p.m.47 views

CVE-2022-48292

The Bluetooth module has an out-of-memory (OOM) vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

6.5CVSS6.5AI score0.00035EPSS
CVE
CVE
added 2023/05/20 3:15 p.m.47 views

CVE-2023-1694

The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.8AI score0.00092EPSS
CVE
CVE
added 2023/08/13 1:15 p.m.47 views

CVE-2023-39399

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9AI score0.00066EPSS
CVE
CVE
added 2023/10/11 1:15 p.m.47 views

CVE-2023-44119

Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.3AI score0.00056EPSS
CVE
CVE
added 2021/07/01 11:15 a.m.46 views

CVE-2021-22347

There is an Improper Access Control vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause temporary DoS.

5.3CVSS5.3AI score0.00176EPSS
CVE
CVE
added 2022/10/14 4:15 p.m.46 views

CVE-2022-41587

Uncaptured exceptions in the home screen module. Successful exploitation of this vulnerability may affect stability.

5.3CVSS5.3AI score0.00055EPSS
CVE
CVE
added 2022/10/14 4:15 p.m.46 views

CVE-2022-41595

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

3.4CVSS4.5AI score0.00011EPSS
CVE
CVE
added 2022/12/20 9:15 p.m.46 views

CVE-2022-46319

Fingerprint calibration has a vulnerability of lacking boundary judgment. Successful exploitation of this vulnerability may cause out-of-bounds write.

9.8CVSS9.3AI score0.001EPSS
CVE
CVE
added 2023/01/06 8:15 p.m.46 views

CVE-2022-47974

The Bluetooth AVRCP module has a vulnerability that can lead to DoS attacks.Successful exploitation of this vulnerability may cause the Bluetooth process to restart.

6.5CVSS6.4AI score0.00034EPSS
CVE
CVE
added 2023/03/27 10:15 p.m.46 views

CVE-2023-26548

The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00112EPSS
CVE
CVE
added 2023/06/19 5:15 p.m.46 views

CVE-2023-34166

Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart.

7.5CVSS7.4AI score0.00102EPSS
CVE
CVE
added 2023/11/08 11:15 a.m.46 views

CVE-2023-46756

Permission control vulnerability in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

5.3CVSS5.2AI score0.00086EPSS
CVE
CVE
added 2022/07/12 2:15 p.m.45 views

CVE-2022-34737

The application security module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may affect data integrity and confidentiality.

9.1CVSS9.1AI score0.00103EPSS
CVE
CVE
added 2022/10/14 4:15 p.m.45 views

CVE-2022-41576

The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices.

7.8CVSS7.5AI score0.00057EPSS
CVE
CVE
added 2022/10/14 4:15 p.m.45 views

CVE-2022-41578

The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information.

9.8CVSS9.7AI score0.0013EPSS
Total number of security vulnerabilities230