Harmonyos@2.0.0 Security Vulnerabilities and Issues — Page 3 of Harmonyos@2.0.0 CVE List

Lucene search

HuaweiHarmonyos2.0.0

205 matches found

CVE•added 2024/05/14 3:37 p.m.•42 views

CVE-2024-32997

Race condition vulnerability in the binder driver moduleImpact: Successful exploitation of this vulnerability will affect availability.

8.4CVSS6.8AI score0.00034EPSS

CVE•added 2024/07/25 12:15 p.m.•42 views

CVE-2024-39674

Plaintext vulnerability in the Gallery search module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.1AI score0.00013EPSS

CVE•added 2024/09/27 11:15 a.m.•42 views

CVE-2024-47292

Path traversal vulnerability in the Bluetooth moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS7AI score0.00039EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54100

Vulnerability of improper access control in the secure input moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.3AI score0.00046EPSS

CVE•added 2023/08/13 12:15 p.m.•41 views

CVE-2023-39389

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.

7.5CVSS7.4AI score0.00094EPSS

CVE•added 2023/08/13 1:15 p.m.•41 views

CVE-2023-39403

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9AI score0.00057EPSS

CVE•added 2023/09/25 9:15 a.m.•41 views

CVE-2023-39408

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

7.5CVSS7.4AI score0.00072EPSS

CVE•added 2023/09/27 3:19 p.m.•41 views

CVE-2023-41309

Permission control vulnerability in the MediaPlaybackController module. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00128EPSS

CVE•added 2023/11/08 10:15 a.m.•41 views

CVE-2023-46765

Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/08/08 10:15 a.m.•41 views

CVE-2024-42034

LaunchAnywhere vulnerability in the account module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

6.6CVSS7AI score0.00021EPSS

CVE•added 2024/09/04 3:15 a.m.•41 views

CVE-2024-45447

Access control vulnerability in the camera framework moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00018EPSS

CVE•added 2024/11/05 10:21 a.m.•41 views

CVE-2024-51527

Permission control vulnerability in the Gallery appImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.5AI score0.00012EPSS

CVE•added 2024/11/05 12:15 p.m.•41 views

CVE-2024-51530

LaunchAnywhere vulnerability in the account moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.6CVSS7AI score0.00026EPSS

CVE•added 2023/08/13 1:15 p.m.•40 views

CVE-2021-46895

Vulnerability of defects introduced in the design process in the Multi-Device Task Center. Successful exploitation of this vulnerability will cause the hopped app to bypass the app lock and reset the device that initiates the hop.

9.1CVSS9AI score0.0002EPSS

CVE•added 2023/06/16 7:15 a.m.•40 views

CVE-2023-34157

Vulnerability of HwWatchHealth being hijacked.Successful exploitation of this vulnerability may cause repeated pop-up windows of the app.

10CVSS6.4AI score0.00039EPSS

CVE•added 2023/11/08 11:15 a.m.•40 views

CVE-2023-46759

Permission control vulnerability in the call module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00128EPSS

CVE•added 2023/11/08 10:15 a.m.•40 views

CVE-2023-46774

Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.

7.5CVSS7.4AI score0.00134EPSS

CVE•added 2024/07/25 12:15 p.m.•40 views

CVE-2024-39673

Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.1CVSS7.1AI score0.00025EPSS

CVE•added 2024/09/04 3:15 a.m.•40 views

CVE-2024-45449

Access permission verification vulnerability in the ringtone setting moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00022EPSS

CVE•added 2024/09/04 2:15 a.m.•40 views

CVE-2024-45450

Permission control vulnerability in the software update module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00066EPSS

CVE•added 2025/01/08 4:15 a.m.•40 views

CVE-2024-56448

Vulnerability of improper access control in the home screen widget moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.9AI score0.00028EPSS

CVE•added 2023/08/13 1:15 p.m.•39 views

CVE-2023-39402

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9AI score0.00102EPSS

CVE•added 2024/07/25 12:15 p.m.•39 views

CVE-2024-39670

Privilege escalation vulnerability in the account synchronisation module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.4AI score0.00021EPSS

CVE•added 2024/09/04 2:15 a.m.•39 views

CVE-2024-42039

Access control vulnerability in the SystemUI moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00075EPSS

CVE•added 2023/07/06 1:15 p.m.•38 views

CVE-2021-46892

Encryption bypass vulnerability in Maintenance mode. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00035EPSS

CVE•added 2023/05/26 5:15 p.m.•38 views

CVE-2022-48479

The facial recognition TA of some products has the out-of-bounds memory read vulnerability. Successful exploitation of this vulnerability may cause exceptions of the facial recognition service.

9.8CVSS9.2AI score0.00125EPSS

CVE•added 2023/07/06 1:15 p.m.•38 views

CVE-2022-48512

Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of this vulnerability may cause the image decoding feature to perform abnormally.

9.8CVSS9.3AI score0.00104EPSS

CVE•added 2023/08/13 12:15 p.m.•38 views

CVE-2023-39381

Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart.

7.5CVSS7.4AI score0.00072EPSS

CVE•added 2023/09/27 3:19 p.m.•38 views

CVE-2023-41306

Vulnerability of mutex management in the bone voice ID trusted application (TA) module. Successful exploitation of this vulnerability may cause the bone voice ID feature to be unavailable.

3.7CVSS4.3AI score0.0008EPSS

CVE•added 2025/01/08 3:15 a.m.•38 views

CVE-2023-52954

Vulnerability of improper permission control in the Gallery moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS4.8AI score0.00021EPSS

CVE•added 2023/11/08 3:15 a.m.•38 views

CVE-2023-5801

Vulnerability of identity verification being bypassed in the face unlock module. Successful exploitation of this vulnerability will affect integrity and confidentiality.

9.1CVSS9AI score0.00056EPSS

CVE•added 2024/05/14 3:37 p.m.•38 views

CVE-2024-32996

Privilege escalation vulnerability in the account moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.1AI score0.00044EPSS

CVE•added 2024/09/27 11:15 a.m.•38 views

CVE-2024-47294

Access permission verification vulnerability in the input method framework moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.9AI score0.00051EPSS

CVE•added 2023/07/06 1:15 p.m.•37 views

CVE-2022-48515

Vulnerability of inappropriate permission control in Nearby. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0008EPSS

CVE•added 2023/08/13 12:15 p.m.•37 views

CVE-2023-39388

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.

7.5CVSS7.4AI score0.00072EPSS

CVE•added 2023/08/13 1:15 p.m.•37 views

CVE-2023-39398

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9AI score0.00066EPSS

CVE•added 2023/08/13 1:15 p.m.•37 views

CVE-2023-39400

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9AI score0.00102EPSS

CVE•added 2023/10/11 12:15 p.m.•37 views

CVE-2023-44103

Out-of-bounds read vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00081EPSS

CVE•added 2024/05/14 3:37 p.m.•37 views

CVE-2024-32993

Out-of-bounds access vulnerability in the memory moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.6CVSS6.8AI score0.0002EPSS

CVE•added 2024/08/08 9:15 a.m.•37 views

CVE-2024-42032

Access permission verification vulnerability in the Contacts moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS4.8AI score0.00018EPSS

CVE•added 2024/09/27 11:15 a.m.•37 views

CVE-2024-47291

Permission vulnerability in the ActivityManagerService (AMS) moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.6CVSS6.9AI score0.00014EPSS

CVE•added 2024/11/05 12:15 p.m.•37 views

CVE-2024-51529

Data verification vulnerability in the battery moduleImpact: Successful exploitation of this vulnerability may affect function stability.

5.5CVSS6.9AI score0.00019EPSS

CVE•added 2023/07/06 1:15 p.m.•36 views

CVE-2023-1695

Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS7.4AI score0.00065EPSS

CVE•added 2023/12/06 9:15 a.m.•36 views

CVE-2023-49246

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00095EPSS

CVE•added 2024/08/08 8:15 a.m.•36 views

CVE-2023-7265

Permission verification vulnerability in the lock screen moduleImpact: Successful exploitation of this vulnerability may affect availability

6.2CVSS4.4AI score0.00021EPSS

CVE•added 2024/09/04 2:15 a.m.•36 views

CVE-2024-45441

Input verification vulnerability in the system service moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.9AI score0.00071EPSS

CVE•added 2023/07/06 1:15 p.m.•35 views

CVE-2022-48511

Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. Successful exploitation of this vulnerability may cause audio features to perform abnormally.

9.8CVSS9.3AI score0.00121EPSS

CVE•added 2023/09/27 3:16 p.m.•35 views

CVE-2022-48606

Stability-related vulnerability in the binder background management and control module. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00214EPSS

CVE•added 2023/06/16 7:15 a.m.•35 views

CVE-2023-34154

Vulnerability of undefined permissions in HUAWEI VR screen projection.Successful exploitation of this vulnerability will cause third-party apps to create windows in an arbitrary way, consuming system resources.

8.2CVSS8AI score0.00063EPSS

CVE•added 2023/09/27 3:19 p.m.•35 views

CVE-2023-41308

Screenshot vulnerability in the input module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00112EPSS

Total number of security vulnerabilities205