Harmonyos Security Vulnerabilities and Issues — Page 3 of Harmonyos CVE List

Lucene search

HuaweiHarmonyos

187 matches found

CVE•added 2024/11/05 9:15 a.m.•42 views

CVE-2024-51513

Vulnerability of processes not being fully terminated in the VPN moduleImpact: Successful exploitation of this vulnerability will affect power consumption.

5.5CVSS6.9AI score0.00014EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54100

Vulnerability of improper access control in the secure input moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.3AI score0.00046EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54103

Vulnerability of improper access control in the album moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.1AI score0.00026EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54108

Read/Write vulnerability in the image decoding moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.5AI score0.00124EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54115

Out-of-bounds read vulnerability in the DASH moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS4.6AI score0.00046EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54117

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.4AI score0.00035EPSS

CVE•added 2024/08/08 10:15 a.m.•41 views

CVE-2024-42034

LaunchAnywhere vulnerability in the account module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

6.6CVSS7AI score0.00021EPSS

CVE•added 2024/09/04 3:15 a.m.•41 views

CVE-2024-45447

Access control vulnerability in the camera framework moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00018EPSS

CVE•added 2024/11/05 10:21 a.m.•41 views

CVE-2024-51527

Permission control vulnerability in the Gallery appImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.5AI score0.00012EPSS

CVE•added 2024/11/05 12:15 p.m.•41 views

CVE-2024-51530

LaunchAnywhere vulnerability in the account moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.6CVSS7AI score0.00026EPSS

CVE•added 2024/12/12 12:15 p.m.•41 views

CVE-2024-54105

Read/Write vulnerability in the image decoding moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.1AI score0.00037EPSS

CVE•added 2024/12/12 12:15 p.m.•41 views

CVE-2024-54113

Process residence vulnerability in abnormal scenarios in the print moduleImpact: Successful exploitation of this vulnerability may affect power consumption.

7.5CVSS6.5AI score0.00033EPSS

CVE•added 2024/12/12 12:15 p.m.•41 views

CVE-2024-54116

Out-of-bounds read vulnerability in the M3U8 moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS4.6AI score0.00046EPSS

CVE•added 2024/01/16 8:15 a.m.•40 views

CVE-2023-44117

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0008EPSS

CVE•added 2024/07/25 12:15 p.m.•40 views

CVE-2024-39673

Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.1CVSS7.1AI score0.00025EPSS

CVE•added 2024/09/04 3:15 a.m.•40 views

CVE-2024-45449

Access permission verification vulnerability in the ringtone setting moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00022EPSS

CVE•added 2024/09/04 2:15 a.m.•40 views

CVE-2024-45450

Permission control vulnerability in the software update module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00066EPSS

CVE•added 2024/12/12 12:15 p.m.•40 views

CVE-2024-54110

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.4AI score0.00036EPSS

CVE•added 2024/06/14 8:15 a.m.•40 views

CVE-2024-5464

Vulnerability of insufficient permission verification in the NearLink moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

4CVSS7.1AI score0.00053EPSS

CVE•added 2024/07/25 12:15 p.m.•39 views

CVE-2024-39670

Privilege escalation vulnerability in the account synchronisation module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.4AI score0.00021EPSS

CVE•added 2024/08/08 9:15 a.m.•39 views

CVE-2024-42030

Access permission verification vulnerability in the content sharing pop-up moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS6.3AI score0.00023EPSS

CVE•added 2024/09/04 2:15 a.m.•39 views

CVE-2024-42039

Access control vulnerability in the SystemUI moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00075EPSS

CVE•added 2024/11/05 10:21 a.m.•39 views

CVE-2024-51517

Vulnerability of improper memory access in the phone service moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS7.1AI score0.00009EPSS

CVE•added 2024/11/05 10:21 a.m.•39 views

CVE-2024-51519

Vulnerability of input parameters not being verified in the HDC moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS7.1AI score0.00017EPSS

CVE•added 2024/12/12 1:15 p.m.•39 views

CVE-2024-54122

Concurrent variable access vulnerability in the ability moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.3AI score0.00009EPSS

CVE•added 2024/05/14 3:37 p.m.•38 views

CVE-2024-32996

Privilege escalation vulnerability in the account moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.1AI score0.00044EPSS

CVE•added 2024/09/04 3:15 a.m.•38 views

CVE-2024-45445

Vulnerability of resources not being closed or released in the keystore moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS7.1AI score0.00021EPSS

CVE•added 2024/09/04 3:15 a.m.•38 views

CVE-2024-45448

Page table protection configuration vulnerability in the trusted firmware moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.2AI score0.00014EPSS

CVE•added 2024/09/27 11:15 a.m.•38 views

CVE-2024-47294

Access permission verification vulnerability in the input method framework moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.9AI score0.00051EPSS

CVE•added 2024/11/05 9:15 a.m.•38 views

CVE-2024-51514

Vulnerability of pop-up windows belonging to no app in the VPN moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.3AI score0.00014EPSS

CVE•added 2024/11/05 10:21 a.m.•38 views

CVE-2024-51526

Permission control vulnerability in the hidebug moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

8.2CVSS8.4AI score0.00008EPSS

CVE•added 2024/12/12 12:15 p.m.•38 views

CVE-2024-54099

File replacement vulnerability on some devicesImpact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

7.1CVSS6.6AI score0.00012EPSS

CVE•added 2024/12/12 12:15 p.m.•38 views

CVE-2024-54104

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.1AI score0.00035EPSS

CVE•added 2024/05/14 2:22 p.m.•37 views

CVE-2023-52384

Double-free vulnerability in the RSMC moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS6.8AI score0.00024EPSS

CVE•added 2024/05/14 3:37 p.m.•37 views

CVE-2024-32993

Out-of-bounds access vulnerability in the memory moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.6CVSS6.8AI score0.0002EPSS

CVE•added 2024/08/08 9:15 a.m.•37 views

CVE-2024-42032

Access permission verification vulnerability in the Contacts moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS4.8AI score0.00018EPSS

CVE•added 2024/09/27 11:15 a.m.•37 views

CVE-2024-47291

Permission vulnerability in the ActivityManagerService (AMS) moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.6CVSS6.9AI score0.00014EPSS

CVE•added 2024/11/05 9:15 a.m.•37 views

CVE-2024-51510

Out-of-bounds access vulnerability in the logo moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.6CVSS7.5AI score0.00018EPSS

CVE•added 2024/11/05 9:15 a.m.•37 views

CVE-2024-51512

Vulnerability of parameter type not being verified in the WantAgent moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.9AI score0.00023EPSS

CVE•added 2024/11/05 10:21 a.m.•37 views

CVE-2024-51521

Input parameter verification vulnerability in the background service moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.7CVSS7.1AI score0.00015EPSS

CVE•added 2024/11/05 12:15 p.m.•37 views

CVE-2024-51529

Data verification vulnerability in the battery moduleImpact: Successful exploitation of this vulnerability may affect function stability.

5.5CVSS6.9AI score0.00019EPSS

CVE•added 2024/09/27 11:15 a.m.•37 views

CVE-2024-9136

Access permission verification vulnerability in the App Multiplier moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.9AI score0.00056EPSS

CVE•added 2024/08/08 8:15 a.m.•36 views

CVE-2023-7265

Permission verification vulnerability in the lock screen moduleImpact: Successful exploitation of this vulnerability may affect availability

6.2CVSS4.4AI score0.00021EPSS

CVE•added 2024/09/04 2:15 a.m.•36 views

CVE-2024-45441

Input verification vulnerability in the system service moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.9AI score0.00071EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51518

Vulnerability of message types not being verified in the advanced messaging modulImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.1AI score0.00029EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51520

Vulnerability of input parameters not being verified in the HDC moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS7.1AI score0.00023EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51522

Vulnerability of improper device information processing in the device management moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.8AI score0.00015EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51523

Information management vulnerability in the Gallery moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.1AI score0.00037EPSS

CVE•added 2024/12/12 12:15 p.m.•36 views

CVE-2024-54109

Read/Write vulnerability in the image decoding moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.5AI score0.00124EPSS

CVE•added 2024/12/12 1:15 p.m.•36 views

CVE-2024-54119

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.4AI score0.00035EPSS

Total number of security vulnerabilities187