Harmonyos@2.1 Security Vulnerabilities and Issues — Harmonyos@2.1 CVE List

Lucene search

HuaweiHarmonyos2.1

14 matches found

CVE•added 2023/04/16 8:15 a.m.•54 views

CVE-2022-48314

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

6.5CVSS6.4AI score0.00013EPSS

CVE•added 2023/03/27 10:15 p.m.•50 views

CVE-2023-26547

The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

7.8CVSS7.6AI score0.00042EPSS

CVE•added 2023/05/20 3:15 p.m.•48 views

CVE-2023-1692

The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.0009EPSS

CVE•added 2023/03/27 10:15 p.m.•46 views

CVE-2023-26548

The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00112EPSS

CVE•added 2023/02/09 5:15 p.m.•45 views

CVE-2022-48302

The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.5AI score0.00069EPSS

CVE•added 2023/03/27 10:15 p.m.•42 views

CVE-2023-26549

The SystemUI module has a vulnerability of repeated app restart due to improper parameters. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00094EPSS

CVE•added 2023/02/09 5:15 p.m.•41 views

CVE-2022-48286

The multi-screen collaboration module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.7AI score0.0007EPSS

CVE•added 2023/02/09 5:15 p.m.•41 views

CVE-2022-48287

The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data integrity.

7.5CVSS7.5AI score0.0004EPSS

CVE•added 2023/04/16 8:15 a.m.•41 views

CVE-2022-48313

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

6.5CVSS6.4AI score0.00013EPSS

CVE•added 2023/02/09 5:15 p.m.•40 views

CVE-2022-48296

The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices.

5.3CVSS5AI score0.00047EPSS

CVE•added 2023/05/20 3:15 p.m.•39 views

CVE-2023-1696

The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00094EPSS

CVE•added 2023/07/06 1:15 p.m.•32 views

CVE-2023-37245

Buffer overflow vulnerability in the modem pinctrl module. Successful exploitation of this vulnerability may affect the integrity and availability of the modem.

9.1CVSS9.3AI score0.00068EPSS

CVE•added 2023/07/06 1:15 p.m.•31 views

CVE-2023-3456

Vulnerability of kernel raw address leakage in the hang detector module. Successful exploitation of this vulnerability may affect service confidentiality.

5.3CVSS5.1AI score0.00087EPSS

CVE•added 2023/06/16 7:15 a.m.•30 views

CVE-2023-34165

Unauthorized access vulnerability in the Save for later feature provided by AI Touch.Successful exploitation of this vulnerability may cause third-party apps to forge a URI for unauthorized access with zero permissions.

5.3CVSS5.2AI score0.0005EPSS