Lucene search

K
HuaweiHarmonyos2.0

356 matches found

CVE
CVE
added 2022/06/13 4:15 p.m.485 views

CVE-2022-31757

The setting module has a vulnerability of improper use of APIs. Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.5AI score0.00131EPSS
CVE
CVE
added 2023/04/16 7:15 a.m.223 views

CVE-2022-48312

The HwPCAssistant module has the out-of-bounds read/write vulnerability. Successful exploitation of this vulnerability may affect confidentiality and integrity.

9.1CVSS9.1AI score0.00082EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.127 views

CVE-2022-22253

The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability.

7.5CVSS7.5AI score0.00066EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.102 views

CVE-2022-22256

The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.5AI score0.00162EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.92 views

CVE-2021-22434

There is a memory address out of bounds vulnerability in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

9.8CVSS9.3AI score0.00247EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.89 views

CVE-2021-22432

There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.

10CVSS9.3AI score0.0018EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.87 views

CVE-2021-40047

There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity.

7.8CVSS7.5AI score0.00095EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.82 views

CVE-2021-40052

There is an incorrect buffer size calculation vulnerability in the video framework.Successful exploitation of this vulnerability may affect availability.

7.8CVSS7.6AI score0.00276EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.82 views

CVE-2022-22261

The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services.

7.5CVSS7.5AI score0.00191EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.81 views

CVE-2021-40055

There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity.

7.1CVSS5.6AI score0.00095EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.80 views

CVE-2021-22431

There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.

9.8CVSS9.3AI score0.00247EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.79 views

CVE-2021-22394

There is a buffer overflow vulnerability in smartphones. Successful exploitation of this vulnerability may cause DoS of the apps during Multi-Screen Collaboration.

9.1CVSS9.3AI score0.00267EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.79 views

CVE-2021-22395

There is a code injection vulnerability in smartphones. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.6AI score0.00284EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.79 views

CVE-2021-40053

There is a permission control vulnerability in the Nearby module.Successful exploitation of this vulnerability will affect availability and integrity.

9.1CVSS9.1AI score0.00256EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.78 views

CVE-2022-22260

The kernel module has a UAF vulnerability.Successful exploitation of this vulnerability will affect data integrity and availability.

9.1CVSS9AI score0.00191EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.77 views

CVE-2021-22433

There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

9.8CVSS9.3AI score0.00247EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.77 views

CVE-2021-40061

There is a vulnerability of accessing resources using an incompatible type (type confusion) in the Bastet module. Successful exploitation of this vulnerability may affect integrity.

7.5CVSS7.5AI score0.00098EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.76 views

CVE-2021-22479

The interface of a certain HarmonyOS module has an invalid address access vulnerability. Successful exploitation of this vulnerability may lead to kernel crash.

5.5CVSS5.3AI score0.00021EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.76 views

CVE-2021-40049

There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization.

7.5CVSS7.3AI score0.00112EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.76 views

CVE-2022-22258

The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege.

9.8CVSS9.1AI score0.0034EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.75 views

CVE-2021-22429

There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

10CVSS9.3AI score0.0018EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.75 views

CVE-2021-22441

Some Huawei products have an integer overflow vulnerability. Successful exploitation of this vulnerability may lead to kernel crash.

5.5CVSS5.5AI score0.00021EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.75 views

CVE-2021-46740

The device authentication service module has a defect vulnerability introduced in the design process.Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.6AI score0.00139EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.74 views

CVE-2021-22480

The interface of a certain HarmonyOS module has an integer overflow vulnerability. Successful exploitation of this vulnerability may lead to heap memory overflow.

9.8CVSS9.4AI score0.00236EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.74 views

CVE-2022-22257

The customization framework has a vulnerability of improper permission control.Successful exploitation of this vulnerability may affect data integrity.

7.5CVSS7.5AI score0.00079EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.73 views

CVE-2021-22430

There is a logic bypass vulnerability in smartphones. Successful exploitation of this vulnerability may cause code injection.

9.8CVSS9.6AI score0.00247EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.73 views

CVE-2021-22489

There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service availability.

7.5CVSS7.5AI score0.0022EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.73 views

CVE-2021-40051

There is an unauthorized access vulnerability in system components. Successful exploitation of this vulnerability will affect confidentiality.

7.5CVSS7.5AI score0.00156EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.73 views

CVE-2021-40064

There is a heap-based buffer overflow vulnerability in system components. Successful exploitation of this vulnerability may affect system stability.

7.8CVSS7.7AI score0.00161EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.73 views

CVE-2021-46742

The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of this vulnerability may affect the availability.

9.1CVSS9AI score0.00191EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.72 views

CVE-2021-40048

There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability.

7.8CVSS7.6AI score0.00149EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.72 views

CVE-2022-29796

The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services.

7.5CVSS7.5AI score0.00191EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.71 views

CVE-2021-22319

There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause integer overflows.

7.5CVSS7.5AI score0.0022EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.70 views

CVE-2021-22426

There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

9.8CVSS9.3AI score0.00247EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.70 views

CVE-2021-46787

The AMS module has a vulnerability of improper permission control.Successful exploitation of this vulnerability may cause non-system application processes to crash.

7.5CVSS7.4AI score0.00191EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.70 views

CVE-2022-22255

The application framework has a common DoS vulnerability.Successful exploitation of this vulnerability may affect the availability.

7.5CVSS7.5AI score0.00191EPSS
CVE
CVE
added 2023/02/09 5:15 p.m.70 views

CVE-2022-48301

The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled.

7.5CVSS7.5AI score0.00047EPSS
CVE
CVE
added 2022/02/25 7:15 p.m.69 views

CVE-2021-22478

The interface of a certain HarmonyOS module has a UAF vulnerability. Successful exploitation of this vulnerability may lead to information leakage.

5.5CVSS5.3AI score0.00028EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.69 views

CVE-2022-29793

There is a configuration defect in the activation lock of mobile phones.Successful exploitation of this vulnerability may affect application availability.

7.5CVSS7.5AI score0.00262EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.68 views

CVE-2021-40063

There is an improper access control vulnerability in the video module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00131EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.68 views

CVE-2022-29789

The HiAIserver has a vulnerability in verifying the validity of the properties used in the model.Successful exploitation of this vulnerability will affect AI services.

7.5CVSS7.5AI score0.00191EPSS
CVE
CVE
added 2022/06/13 3:15 p.m.68 views

CVE-2022-31755

The communication module has a vulnerability of improper permission preservation. Successful exploitation of this vulnerability may affect system availability.

5.5CVSS5.5AI score0.00056EPSS
CVE
CVE
added 2022/03/10 5:43 p.m.67 views

CVE-2021-40050

There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this vulnerability may cause stack overflow.

10CVSS9.3AI score0.0023EPSS
CVE
CVE
added 2022/06/13 4:15 p.m.67 views

CVE-2022-31753

The voice wakeup module has a vulnerability of using externally-controlled format strings. Successful exploitation of this vulnerability may affect system availability.

7.5CVSS7.5AI score0.00191EPSS
CVE
CVE
added 2022/04/11 8:15 p.m.66 views

CVE-2021-40065

The communication module has a service logic error vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.5AI score0.00131EPSS
CVE
CVE
added 2022/06/13 4:15 p.m.66 views

CVE-2022-31760

Dialog boxes can still be displayed even if the screen is locked in carrier-customized USSD services. Successful exploitation of this vulnerability may affect data integrity and confidentiality.

9.1CVSS9.1AI score0.00127EPSS
CVE
CVE
added 2022/06/13 3:15 p.m.66 views

CVE-2022-31762

The AMS module has a vulnerability in input validation. Successful exploitation of this vulnerability may cause privilege escalation.

7.8CVSS7.6AI score0.00074EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.65 views

CVE-2021-46786

The audio module has a vulnerability in verifying the parameters passed by the application space.Successful exploitation of this vulnerability may cause out-of-bounds memory access.

9.8CVSS9.3AI score0.00247EPSS
CVE
CVE
added 2022/05/13 3:15 p.m.64 views

CVE-2022-29794

The frame scheduling module has a Use After Free (UAF) vulnerability.Successful exploitation of this vulnerability will affect data integrity, availability, and confidentiality.

9.8CVSS9.4AI score0.0029EPSS
CVE
CVE
added 2022/06/13 3:15 p.m.63 views

CVE-2021-46814

The video framework has an out-of-bounds memory read/write vulnerability. Successful exploitation of this vulnerability may affect system availability.

7.5CVSS7.5AI score0.00218EPSS
Total number of security vulnerabilities356