918 matches found
CVE-2023-39388
Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.
CVE-2023-39398
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.
CVE-2023-39400
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.
CVE-2023-44102
Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability can cause the Bluetooth function to be unavailable.
CVE-2023-44103
Out-of-bounds read vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2023-46769
Use-After-Free (UAF) vulnerability in the dubai module. Successful exploitation of this vulnerability will affect availability.
CVE-2024-42032
Access permission verification vulnerability in the Contacts moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-47291
Permission vulnerability in the ActivityManagerService (AMS) moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-51510
Out-of-bounds access vulnerability in the logo moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-51512
Vulnerability of parameter type not being verified in the WantAgent moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-51520
Vulnerability of input parameters not being verified in the HDC moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-51521
Input parameter verification vulnerability in the background service moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-51529
Data verification vulnerability in the battery moduleImpact: Successful exploitation of this vulnerability may affect function stability.
CVE-2024-54119
Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-56439
Access control vulnerability in the identity authentication moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-56454
Vulnerability of input parameters not being verified during glTF model loading in the 3D engine moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-58108
Buffer overflow vulnerability in the codec moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-58113
Vulnerability of improper resource management in the memory management moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-9136
Access permission verification vulnerability in the App Multiplier moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2025-48908
Ability Auto Startup service vulnerability in the foundation processImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48910
Buffer overflow vulnerability in the DFile moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2021-22296
A component of HarmonyOS 2.0 has a DoS vulnerability. Local attackers may exploit this vulnerability to mount a file system to the target device, causing DoS of the file system.
CVE-2021-22462
A component of the HarmonyOS has a NULL Pointer Dereference vulnerability. Local attackers may exploit this vulnerability to cause kernel crash.
CVE-2021-37004
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.
CVE-2021-37010
There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the confidentiality of users is affected.
CVE-2021-37011
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.
CVE-2021-37016
There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause Information Disclosure or Denial of Service.
CVE-2021-37017
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.
CVE-2021-37057
There is a Improper Validation of Array Index vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to restart the phone.
CVE-2021-37068
There is a Resource Management Errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of Service Attacks.
CVE-2021-37110
There is a Timing design defects in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2021-37118
The HwNearbyMain module has a Improper Handling of Exceptional Conditions vulnerability.Successful exploitation of this vulnerability may lead to message leak.
CVE-2021-40001
The CaasKit module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the MeeTime application to be unavailable.
CVE-2021-40003
HwPCAssistant has a path traversal vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
CVE-2022-38990
The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.
CVE-2022-41597
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
CVE-2022-48511
Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. Successful exploitation of this vulnerability may cause audio features to perform abnormally.
CVE-2023-1695
Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.
CVE-2023-41294
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability may affect some Super Device services.
CVE-2023-44107
Vulnerability of defects introduced in the design process in the screen projection module.Successful exploitation of this vulnerability may affect service availability and integrity.
CVE-2023-49246
Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2023-7265
Permission verification vulnerability in the lock screen moduleImpact: Successful exploitation of this vulnerability may affect availability
CVE-2024-45441
Input verification vulnerability in the system service moduleImpact: Successful exploitation of this vulnerability will affect availability.
CVE-2024-51518
Vulnerability of message types not being verified in the advanced messaging modulImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-51522
Vulnerability of improper device information processing in the device management moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2024-51523
Information management vulnerability in the Gallery moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-54109
Read/Write vulnerability in the image decoding moduleImpact: Successful exploitation of this vulnerability will affect availability.
CVE-2024-56449
Privilege escalation vulnerability in the Account moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2025-48906
Authentication bypass vulnerability in the DSoftBus moduleImpact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-48907
Deserialization vulnerability in the IPC moduleImpact: Successful exploitation of this vulnerability may affect availability.