Harmonyos@2.0.0 Security Vulnerabilities and Issues — Page 4 of Harmonyos@2.0.0 CVE List

Lucene search

HuaweiHarmonyos2.0.0

205 matches found

CVE•added 2023/12/06 9:15 a.m.•35 views

CVE-2023-44099

Vulnerability of data verification errors in the kernel module. Successful exploitation of this vulnerability may cause WLAN interruption.

7.5CVSS7.3AI score0.00099EPSS

CVE•added 2023/12/06 9:15 a.m.•35 views

CVE-2023-49240

Unauthorized access vulnerability in the launcher module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00095EPSS

CVE•added 2023/12/06 9:15 a.m.•35 views

CVE-2023-49243

Vulnerability of unauthorized access to email attachments in the email module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.3AI score0.00111EPSS

CVE•added 2025/01/08 3:15 a.m.•35 views

CVE-2023-52953

Path traversal vulnerability in the Medialibrary moduleImpact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

9.1CVSS6.4AI score0.0004EPSS

CVE•added 2025/01/08 4:15 a.m.•35 views

CVE-2024-56449

Privilege escalation vulnerability in the Account moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.2AI score0.00024EPSS

CVE•added 2025/03/04 8:15 a.m.•35 views

CVE-2024-58043

Permission bypass vulnerability in the window moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.3CVSS7.2AI score0.0001EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48902

Vulnerability of uncontrolled system resource applications in the setting moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.6CVSS6.9AI score0.00007EPSS

CVE•added 2023/10/11 11:15 a.m.•34 views

CVE-2023-44096

Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.6AI score0.0007EPSS

CVE•added 2023/12/06 9:15 a.m.•34 views

CVE-2023-6273

Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.

5.3CVSS5.3AI score0.00037EPSS

CVE•added 2023/11/08 4:15 a.m.•33 views

CVE-2023-44115

Vulnerability of improper permission control in the Booster module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0015EPSS

CVE•added 2023/12/06 9:15 a.m.•33 views

CVE-2023-49239

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00095EPSS

CVE•added 2023/12/06 9:15 a.m.•33 views

CVE-2023-49245

Unauthorized access vulnerability in the Huawei Share module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2025/01/08 3:15 a.m.•33 views

CVE-2023-52955

Vulnerability of improper authentication in the ANS system service moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.6AI score0.00046EPSS

CVE•added 2024/05/14 3:37 p.m.•33 views

CVE-2024-32991

Permission verification vulnerability in the wpa_supplicant moduleImpact: Successful exploitation of this vulnerability will affect availability.

9.8CVSS6.8AI score0.00166EPSS

CVE•added 2024/05/14 3:37 p.m.•33 views

CVE-2024-32992

Insufficient verification vulnerability in the baseband moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00156EPSS

CVE•added 2025/01/08 3:15 a.m.•33 views

CVE-2024-56441

Race condition vulnerability in the Bastet moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.9CVSS4.6AI score0.00014EPSS

CVE•added 2023/07/06 1:15 p.m.•32 views

CVE-2022-48519

Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00091EPSS

CVE•added 2023/09/27 3:19 p.m.•32 views

CVE-2023-4565

Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable.

5.3CVSS5.2AI score0.00068EPSS

CVE•added 2023/12/06 9:15 a.m.•32 views

CVE-2023-49241

API permission control vulnerability in the network management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2025/01/08 3:15 a.m.•32 views

CVE-2024-56447

Vulnerability of improper permission control in the window management moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.8CVSS7.6AI score0.00027EPSS

CVE•added 2025/03/04 8:15 a.m.•32 views

CVE-2024-58044

Permission verification bypass vulnerability in the notification moduleImpact: Successful exploitation of this vulnerability may affect availability.

8.4CVSS8.4AI score0.00023EPSS

CVE•added 2023/07/06 1:15 p.m.•31 views

CVE-2021-46894

Use After Free (UAF) vulnerability in the uinput module.Successful exploitation of this vulnerability may lead to kernel privilege escalation.

9.8CVSS9.2AI score0.00105EPSS

CVE•added 2023/07/06 1:15 p.m.•31 views

CVE-2022-48513

Vulnerability of identity verification being bypassed in the Gallery module. Successful exploitation of this vulnerability may cause out-of-bounds access.

9.8CVSS9.2AI score0.00043EPSS

CVE•added 2023/12/06 9:15 a.m.•31 views

CVE-2023-49242

Free broadcast vulnerability in the running management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2024/05/14 3:37 p.m.•31 views

CVE-2024-32990

Permission verification vulnerability in the system sharing pop-up moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00105EPSS

CVE•added 2024/05/14 3:37 p.m.•31 views

CVE-2024-32998

NULL pointer access vulnerability in the clock moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.9CVSS6.8AI score0.00029EPSS

CVE•added 2023/07/06 1:15 p.m.•30 views

CVE-2022-48510

Input verification vulnerability in the AMS module. Successful exploitation of this vulnerability will cause unauthorized operations.

9.8CVSS9.2AI score0.00121EPSS

CVE•added 2023/07/06 1:15 p.m.•30 views

CVE-2022-48516

Vulnerability that a unique value can be obtained by a third-party app in the DSoftBus module. Successful exploitation of this vulnerability will affect confidentiality.

7.5CVSS7.4AI score0.00094EPSS

CVE•added 2023/10/11 12:15 p.m.•30 views

CVE-2023-44100

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00069EPSS

CVE•added 2024/05/14 2:23 p.m.•30 views

CVE-2023-52719

Privilege escalation vulnerability in the PMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.1CVSS7.1AI score0.00044EPSS

CVE•added 2024/05/14 3:37 p.m.•30 views

CVE-2024-32995

Denial of service (DoS) vulnerability in the AMS moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.8AI score0.00043EPSS

CVE•added 2023/07/06 1:15 p.m.•29 views

CVE-2022-48509

Race condition vulnerability due to multi-thread access to mutually exclusive resources in Huawei Share. Successful exploitation of this vulnerability may cause the program to exit abnormally.

5.9CVSS5.6AI score0.00076EPSS

CVE•added 2023/07/06 1:15 p.m.•29 views

CVE-2022-48517

Unauthorized service access vulnerability in the DSoftBus module. Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.5AI score0.00084EPSS

CVE•added 2023/07/06 1:15 p.m.•29 views

CVE-2022-48518

Vulnerability of signature verification in the iaware system being initialized later than the time when the system broadcasts are sent. Successful exploitation of this vulnerability may cause malicious apps to start upon power-on by spoofing the package names of apps in the startup trustlist, which...

5.5CVSS5.3AI score0.00029EPSS

CVE•added 2023/09/27 3:19 p.m.•29 views

CVE-2023-41307

Memory overwriting vulnerability in the security module. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.0015EPSS

CVE•added 2024/05/14 3:37 p.m.•29 views

CVE-2024-32999

Cracking vulnerability in the OS security moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.8CVSS6.9AI score0.0003EPSS

CVE•added 2023/07/06 1:15 p.m.•28 views

CVE-2023-1691

Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS7.4AI score0.00076EPSS

CVE•added 2023/09/25 12:15 p.m.•28 views

CVE-2023-41296

Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidentiality.

9.1CVSS8.9AI score0.00123EPSS

CVE•added 2023/12/06 9:15 a.m.•28 views

CVE-2023-49248

Vulnerability of unauthorized file access in the Settings app. Successful exploitation of this vulnerability may cause unauthorized file access.

5.5CVSS5.4AI score0.00038EPSS

CVE•added 2024/01/16 9:15 a.m.•28 views

CVE-2023-52114

Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.

7.5CVSS7.4AI score0.00054EPSS

CVE•added 2024/01/16 8:15 a.m.•27 views

CVE-2023-44112

Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.6AI score0.00098EPSS

CVE•added 2024/01/16 9:15 a.m.•27 views

CVE-2023-52098

Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.5AI score0.00072EPSS

CVE•added 2024/01/16 9:15 a.m.•27 views

CVE-2023-52116

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

7.5CVSS7.5AI score0.00072EPSS

CVE•added 2023/07/06 1:15 p.m.•26 views

CVE-2022-48507

Vulnerability of identity verification being bypassed in the storage module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00048EPSS

CVE•added 2024/01/16 10:15 a.m.•26 views

CVE-2023-52102

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/01/16 9:15 a.m.•26 views

CVE-2023-52107

Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00071EPSS

CVE•added 2023/07/06 1:15 p.m.•25 views

CVE-2022-48508

Inappropriate authorization vulnerability in the system apps. Successful exploitation of this vulnerability may affect service integrity.

7.5CVSS7.5AI score0.00054EPSS

CVE•added 2023/07/06 1:15 p.m.•25 views

CVE-2022-48520

Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00091EPSS

CVE•added 2023/09/27 3:19 p.m.•25 views

CVE-2023-41310

Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this vulnerability may cause malicious apps to run continuously in the background.

3.3CVSS4.2AI score0.00035EPSS

CVE•added 2024/01/16 10:15 a.m.•25 views

CVE-2023-52101

Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availability and integrity.

9.1CVSS9.1AI score0.00132EPSS

Total number of security vulnerabilities205