Harmonyos@2.1.0 Security Vulnerabilities and Issues — Harmonyos@2.1.0 CVE List

Lucene search

HuaweiHarmonyos2.1.0

177 matches found

CVE•added 2024/02/18 4:15 a.m.•7042 views

CVE-2023-52369

Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and integrity.

9.1CVSS7AI score0.0008EPSS

CVE•added 2024/02/18 3:15 a.m.•7037 views

CVE-2023-52363

Vulnerability of defects introduced in the design process in the Control Panel module.Successful exploitation of this vulnerability may cause app processes to be started by mistake.

6.3CVSS6.6AI score0.00038EPSS

CVE•added 2024/02/18 6:15 a.m.•6977 views

CVE-2023-52375

Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.8AI score0.00039EPSS

CVE•added 2024/02/18 4:15 a.m.•6973 views

CVE-2023-52373

Vulnerability of permission verification in the content sharing pop-up module.Successful exploitation of this vulnerability may cause unauthorized file sharing.

7.5CVSS6.7AI score0.0008EPSS

CVE•added 2024/02/18 4:15 a.m.•6907 views

CVE-2023-52371

Vulnerability of null references in the motor module.Successful exploitation of this vulnerability may affect availability.

3.5CVSS6.7AI score0.00019EPSS

CVE•added 2024/02/18 6:15 a.m.•6652 views

CVE-2023-52377

Vulnerability of input data not being verified in the cellular data module.Successful exploitation of this vulnerability may cause out-of-bounds access.

7.4CVSS6.7AI score0.00119EPSS

CVE•added 2024/02/18 3:15 a.m.•6476 views

CVE-2023-52358

Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.7AI score0.00022EPSS

CVE•added 2024/02/18 3:15 a.m.•6358 views

CVE-2023-52097

Vulnerability of foreground service restrictions being bypassed in the NMS module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.7AI score0.00065EPSS

CVE•added 2024/02/18 7:15 a.m.•6243 views

CVE-2023-52381

Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

9.8CVSS7.1AI score0.00195EPSS

CVE•added 2024/02/18 7:15 a.m.•6129 views

CVE-2023-52380

Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality.

4.3CVSS6.7AI score0.00117EPSS

CVE•added 2024/02/18 4:15 a.m.•5808 views

CVE-2023-52368

Input verification vulnerability in the account module.Successful exploitation of this vulnerability may cause features to perform abnormally.

5.3CVSS6.7AI score0.00067EPSS

CVE•added 2024/02/18 4:15 a.m.•4604 views

CVE-2023-52372

Vulnerability of input parameter verification in the motor module.Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.7AI score0.00084EPSS

CVE•added 2024/02/18 6:15 a.m.•4428 views

CVE-2023-52376

Information management vulnerability in the Gallery module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.7AI score0.0011EPSS

CVE•added 2024/02/18 3:15 a.m.•3932 views

CVE-2023-52360

Logic vulnerabilities in the baseband.Successful exploitation of this vulnerability may affect service integrity.

7.5CVSS6.9AI score0.00057EPSS

CVE•added 2024/02/18 4:15 a.m.•3931 views

CVE-2023-52370

Stack overflow vulnerability in the network acceleration module.Successful exploitation of this vulnerability may cause unauthorized file access.

9.8CVSS7AI score0.00113EPSS

CVE•added 2023/09/25 1:15 p.m.•2496 views

CVE-2023-41301

Vulnerability of unauthorized API access in the PMS module. Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS7.4AI score0.00114EPSS

CVE•added 2024/02/18 4:15 a.m.•2379 views

CVE-2023-52367

Vulnerability of improper access control in the media library module.Successful exploitation of this vulnerability may affect service availability and integrity.

7.7CVSS6.7AI score0.0002EPSS

CVE•added 2024/02/18 7:15 a.m.•92 views

CVE-2023-52379

Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.8AI score0.0008EPSS

CVE•added 2024/02/18 3:15 a.m.•85 views

CVE-2023-52357

Vulnerability of serialization/deserialization mismatch in the vibration framework.Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.7AI score0.00089EPSS

CVE•added 2025/04/07 4:15 a.m.•74 views

CVE-2025-31175

Deserialization mismatch vulnerability in the DSoftBus moduleImpact: Successful exploitation of this vulnerability may affect service integrity.

8.4CVSS6.9AI score0.00046EPSS

CVE•added 2023/02/09 5:15 p.m.•70 views

CVE-2022-48301

The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled.

7.5CVSS7.5AI score0.00047EPSS

CVE•added 2023/10/11 1:15 p.m.•64 views

CVE-2023-44116

Vulnerability of access permissions not being strictly verified in the APPWidget module.Successful exploitation of this vulnerability may cause some apps to run without being authorized.

9.8CVSS9.2AI score0.00074EPSS

CVE•added 2024/04/08 9:15 a.m.•62 views

CVE-2023-52359

Vulnerability of permission verification in some APIs in the ActivityTaskManagerService module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00097EPSS

CVE•added 2025/01/08 3:15 a.m.•61 views

CVE-2024-56442

Vulnerability of native APIs not being implemented in the NFC service moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.8AI score0.0003EPSS

CVE•added 2024/04/07 8:15 a.m.•59 views

CVE-2024-30415

Vulnerability of improper permission control in the window management module.Impact: Successful exploitation of this vulnerability will affect availability.

9.1CVSS6.8AI score0.00069EPSS

CVE•added 2024/04/08 9:15 a.m.•57 views

CVE-2023-52551

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

5.3CVSS6.7AI score0.00016EPSS

CVE•added 2024/07/25 12:15 p.m.•57 views

CVE-2023-7271

Privilege escalation vulnerability in the NMS moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS7.4AI score0.00021EPSS

CVE•added 2023/11/08 10:15 a.m.•55 views

CVE-2023-46764

Unauthorized startup vulnerability of background apps. Successful exploitation of this vulnerability may cause background apps to start maliciously.

5.3CVSS5.2AI score0.00079EPSS

CVE•added 2024/04/08 9:15 a.m.•55 views

CVE-2023-52553

Race condition vulnerability in the Wi-Fi module.Impact: Successful exploitation of this vulnerability will affect availability.

7.4CVSS6.8AI score0.00057EPSS

CVE•added 2024/04/07 9:15 a.m.•55 views

CVE-2023-52716

Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00072EPSS

CVE•added 2023/04/16 8:15 a.m.•54 views

CVE-2022-48314

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

6.5CVSS6.4AI score0.00013EPSS

CVE•added 2023/10/11 1:15 p.m.•54 views

CVE-2023-44108

Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to restart.

7.5CVSS7.4AI score0.00062EPSS

CVE•added 2024/04/08 9:15 a.m.•54 views

CVE-2023-52538

Vulnerability of package name verification being bypassed in the HwIms module.Impact: Successful exploitation of this vulnerability will affect availability.

9.1CVSS6.8AI score0.00014EPSS

CVE•added 2024/06/14 8:15 a.m.•53 views

CVE-2024-36501

Memory management vulnerability in the boottime moduleImpact: Successful exploitation of this vulnerability can affect integrity.

5.6CVSS7.1AI score0.00047EPSS

CVE•added 2024/08/08 9:15 a.m.•53 views

CVE-2024-42031

Access permission verification vulnerability in the Settings module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.9AI score0.00097EPSS

CVE•added 2024/04/08 9:15 a.m.•52 views

CVE-2023-52543

Permission verification vulnerability in the system module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.8AI score0.00018EPSS

CVE•added 2024/04/08 9:15 a.m.•52 views

CVE-2023-52549

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.7AI score0.00059EPSS

CVE•added 2024/12/12 12:15 p.m.•52 views

CVE-2024-54097

Security vulnerability in the HiView moduleImpact: Successful exploitation of this vulnerability may affect feature implementation and integrity.

7.5CVSS7.2AI score0.00074EPSS

CVE•added 2023/03/27 10:15 p.m.•51 views

CVE-2022-48349

The control component has a spoofing vulnerability. Successful exploitation of this vulnerability may affect confidentiality and availability.

9.1CVSS9AI score0.00102EPSS

CVE•added 2023/08/13 1:15 p.m.•51 views

CVE-2023-39385

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access.

9.1CVSS9AI score0.00082EPSS

CVE•added 2023/10/11 11:15 a.m.•51 views

CVE-2023-44093

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00081EPSS

CVE•added 2024/04/08 9:15 a.m.•51 views

CVE-2023-52537

Vulnerability of package name verification being bypassed in the HwIms module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00031EPSS

CVE•added 2024/04/08 9:15 a.m.•51 views

CVE-2023-52554

Permission control vulnerability in the Bluetooth module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

6.5CVSS6.8AI score0.00025EPSS

CVE•added 2024/04/07 9:15 a.m.•51 views

CVE-2023-52713

Vulnerability of improper permission control in the window management module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

7.7CVSS6.8AI score0.00022EPSS

CVE•added 2024/04/07 9:15 a.m.•51 views

CVE-2023-52714

Vulnerability of defects introduced in the design process in the hwnff module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.8AI score0.00064EPSS

CVE•added 2023/03/27 10:15 p.m.•50 views

CVE-2022-48359

The recovery mode for updates has a vulnerability that causes arbitrary disk modification. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2024/04/08 9:15 a.m.•50 views

CVE-2023-52550

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.7AI score0.00059EPSS

CVE•added 2024/06/14 8:15 a.m.•50 views

CVE-2024-36499

Vulnerability of unauthorized screenshot capturing in the WMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.8CVSS6.9AI score0.00028EPSS

CVE•added 2024/12/12 12:15 p.m.•50 views

CVE-2024-54101

Denial of service (DoS) vulnerability in the installation moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.9AI score0.00032EPSS

CVE•added 2023/08/13 12:15 p.m.•49 views

CVE-2023-39405

Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation of this vulnerability may cause other apps to be executed with escalated privileges.

9.8CVSS9.3AI score0.00104EPSS

Total number of security vulnerabilities177