Harmonyos@3.0.0 Security Vulnerabilities and Issues — Page 6 of Harmonyos@3.0.0 CVE List

Lucene search

HuaweiHarmonyos3.0.0

312 matches found

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48902

Vulnerability of uncontrolled system resource applications in the setting moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.6CVSS6.9AI score0.00007EPSS

CVE•added 2023/02/09 5:15 p.m.•34 views

CVE-2022-48297

The geofencing kernel code has a vulnerability of not verifying the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.

7.5CVSS7.5AI score0.00081EPSS

CVE•added 2023/07/06 1:15 p.m.•34 views

CVE-2023-37239

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program.

7.5CVSS7.5AI score0.00037EPSS

CVE•added 2023/10/11 11:15 a.m.•34 views

CVE-2023-44096

Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.6AI score0.0007EPSS

CVE•added 2023/12/06 9:15 a.m.•34 views

CVE-2023-6273

Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.

5.3CVSS5.3AI score0.00037EPSS

CVE•added 2025/01/08 3:15 a.m.•34 views

CVE-2024-56440

Permission control vulnerability in the Connectivity moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.3AI score0.00035EPSS

CVE•added 2023/07/05 1:15 p.m.•33 views

CVE-2023-3455

Key management vulnerability on system. Successful exploitation of this vulnerability may affect service availability and integrity.

9.1CVSS9.1AI score0.00054EPSS

CVE•added 2023/08/13 12:15 p.m.•33 views

CVE-2023-39396

Deserialization vulnerability in the input module. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00096EPSS

CVE•added 2023/11/08 4:15 a.m.•33 views

CVE-2023-44115

Vulnerability of improper permission control in the Booster module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0015EPSS

CVE•added 2024/01/16 8:15 a.m.•33 views

CVE-2023-4566

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0008EPSS

CVE•added 2023/11/08 3:15 a.m.•33 views

CVE-2023-46768

Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS7.5AI score0.00134EPSS

CVE•added 2023/12/06 9:15 a.m.•33 views

CVE-2023-49239

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00095EPSS

CVE•added 2023/12/06 9:15 a.m.•33 views

CVE-2023-49245

Unauthorized access vulnerability in the Huawei Share module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2025/01/08 3:15 a.m.•33 views

CVE-2023-52955

Vulnerability of improper authentication in the ANS system service moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.6AI score0.00046EPSS

CVE•added 2024/05/14 3:37 p.m.•33 views

CVE-2024-32991

Permission verification vulnerability in the wpa_supplicant moduleImpact: Successful exploitation of this vulnerability will affect availability.

9.8CVSS6.8AI score0.00166EPSS

CVE•added 2024/05/14 3:37 p.m.•33 views

CVE-2024-32992

Insufficient verification vulnerability in the baseband moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00156EPSS

CVE•added 2025/01/08 3:15 a.m.•33 views

CVE-2024-56441

Race condition vulnerability in the Bastet moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.9CVSS4.6AI score0.00014EPSS

CVE•added 2023/07/06 1:15 p.m.•32 views

CVE-2023-37245

Buffer overflow vulnerability in the modem pinctrl module. Successful exploitation of this vulnerability may affect the integrity and availability of the modem.

9.1CVSS9.3AI score0.00068EPSS

CVE•added 2023/09/27 3:19 p.m.•32 views

CVE-2023-41311

Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause an app to be activated automatically.

5.3CVSS5.2AI score0.00117EPSS

CVE•added 2023/09/27 3:19 p.m.•32 views

CVE-2023-4565

Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable.

5.3CVSS5.2AI score0.00068EPSS

CVE•added 2023/12/06 9:15 a.m.•32 views

CVE-2023-49241

API permission control vulnerability in the network management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2024/01/16 10:15 a.m.•32 views

CVE-2023-52103

Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read.

9.8CVSS9.5AI score0.00203EPSS

CVE•added 2025/01/08 3:15 a.m.•32 views

CVE-2024-56447

Vulnerability of improper permission control in the window management moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.8CVSS7.6AI score0.00027EPSS

CVE•added 2025/03/04 8:15 a.m.•32 views

CVE-2024-58044

Permission verification bypass vulnerability in the notification moduleImpact: Successful exploitation of this vulnerability may affect availability.

8.4CVSS8.4AI score0.00023EPSS

CVE•added 2023/07/06 1:15 p.m.•31 views

CVE-2022-48513

Vulnerability of identity verification being bypassed in the Gallery module. Successful exploitation of this vulnerability may cause out-of-bounds access.

9.8CVSS9.2AI score0.00043EPSS

CVE•added 2023/07/06 1:15 p.m.•31 views

CVE-2023-3456

Vulnerability of kernel raw address leakage in the hang detector module. Successful exploitation of this vulnerability may affect service confidentiality.

5.3CVSS5.1AI score0.00087EPSS

CVE•added 2023/12/06 9:15 a.m.•31 views

CVE-2023-46773

Permission management vulnerability in the PMS module. Successful exploitation of this vulnerability may cause privilege escalation.

9.8CVSS9.3AI score0.00116EPSS

CVE•added 2023/12/06 9:15 a.m.•31 views

CVE-2023-49242

Free broadcast vulnerability in the running management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2024/05/14 3:37 p.m.•31 views

CVE-2024-32990

Permission verification vulnerability in the system sharing pop-up moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00105EPSS

CVE•added 2024/05/14 3:37 p.m.•31 views

CVE-2024-32998

NULL pointer access vulnerability in the clock moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.9CVSS6.8AI score0.00029EPSS

CVE•added 2023/10/11 12:15 p.m.•30 views

CVE-2023-44100

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00069EPSS

CVE•added 2023/12/06 9:15 a.m.•30 views

CVE-2023-44113

Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00088EPSS

CVE•added 2024/01/16 8:15 a.m.•30 views

CVE-2023-52109

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00073EPSS

CVE•added 2024/05/14 2:22 p.m.•30 views

CVE-2023-52383

Double-free vulnerability in the RSMC moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS6.8AI score0.00021EPSS

CVE•added 2024/05/14 2:23 p.m.•30 views

CVE-2023-52719

Privilege escalation vulnerability in the PMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.1CVSS7.1AI score0.00044EPSS

CVE•added 2024/05/14 2:23 p.m.•30 views

CVE-2023-52720

Race condition vulnerability in the soundtrigger moduleImpact: Successful exploitation of this vulnerability will affect availability.

4.1CVSS6.8AI score0.00019EPSS

CVE•added 2024/05/14 3:37 p.m.•30 views

CVE-2024-32995

Denial of service (DoS) vulnerability in the AMS moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.8AI score0.00043EPSS

CVE•added 2023/07/06 1:15 p.m.•29 views

CVE-2023-37242

Vulnerability of commands from the modem being intercepted in the atcmdserver module. Attackers may exploit this vulnerability to rewrite the non-volatile random-access memory (NVRAM), or facilitate the exploitation of other vulnerabilities.

9.8CVSS9.4AI score0.00084EPSS

CVE•added 2023/09/27 3:19 p.m.•29 views

CVE-2023-41307

Memory overwriting vulnerability in the security module. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.0015EPSS

CVE•added 2023/12/06 9:15 a.m.•29 views

CVE-2023-49244

Permission management vulnerability in the multi-user module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2024/05/14 3:37 p.m.•29 views

CVE-2024-32999

Cracking vulnerability in the OS security moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.8CVSS6.9AI score0.0003EPSS

CVE•added 2023/07/06 1:15 p.m.•28 views

CVE-2023-1691

Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS7.4AI score0.00076EPSS

CVE•added 2023/09/25 12:15 p.m.•28 views

CVE-2023-41296

Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidentiality.

9.1CVSS8.9AI score0.00123EPSS

CVE•added 2023/12/06 9:15 a.m.•28 views

CVE-2023-49248

Vulnerability of unauthorized file access in the Settings app. Successful exploitation of this vulnerability may cause unauthorized file access.

5.5CVSS5.4AI score0.00038EPSS

CVE•added 2024/01/16 10:15 a.m.•28 views

CVE-2023-52104

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/01/16 9:15 a.m.•28 views

CVE-2023-52114

Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.

7.5CVSS7.4AI score0.00054EPSS

CVE•added 2023/07/06 1:15 p.m.•27 views

CVE-2023-37240

Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability may cause out-of-bounds read.

9.1CVSS9.1AI score0.00102EPSS

CVE•added 2024/01/16 8:15 a.m.•27 views

CVE-2023-44112

Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.6AI score0.00098EPSS

CVE•added 2024/01/16 9:15 a.m.•27 views

CVE-2023-52098

Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.5AI score0.00072EPSS

CVE•added 2024/01/16 9:15 a.m.•27 views

CVE-2023-52116

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

7.5CVSS7.5AI score0.00072EPSS

Total number of security vulnerabilities312