Harmonyos@3.1.0 Security Vulnerabilities and Issues — Page 2 of Harmonyos@3.1.0 CVE List

Lucene search

HuaweiHarmonyos3.1.0

254 matches found

CVE•added 2024/04/07 9:15 a.m.•55 views

CVE-2023-52716

Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00072EPSS

CVE•added 2023/04/16 8:15 a.m.•54 views

CVE-2022-48314

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

6.5CVSS6.4AI score0.00013EPSS

CVE•added 2023/09/25 12:15 p.m.•54 views

CVE-2023-41299

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

7.5CVSS7.4AI score0.00134EPSS

CVE•added 2023/10/11 1:15 p.m.•54 views

CVE-2023-44108

Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to restart.

7.5CVSS7.4AI score0.00062EPSS

CVE•added 2024/04/08 9:15 a.m.•54 views

CVE-2023-52538

Vulnerability of package name verification being bypassed in the HwIms module.Impact: Successful exploitation of this vulnerability will affect availability.

9.1CVSS6.8AI score0.00014EPSS

CVE•added 2024/04/08 9:15 a.m.•53 views

CVE-2023-52545

Vulnerability of undefined permissions in the Calendar app.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00071EPSS

CVE•added 2024/06/14 8:15 a.m.•53 views

CVE-2024-36501

Memory management vulnerability in the boottime moduleImpact: Successful exploitation of this vulnerability can affect integrity.

5.6CVSS7.1AI score0.00047EPSS

CVE•added 2024/08/08 9:15 a.m.•53 views

CVE-2024-42031

Access permission verification vulnerability in the Settings module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.9AI score0.00097EPSS

CVE•added 2023/11/08 10:15 a.m.•52 views

CVE-2023-46766

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/04/08 9:15 a.m.•52 views

CVE-2023-52543

Permission verification vulnerability in the system module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.8AI score0.00018EPSS

CVE•added 2024/04/08 9:15 a.m.•52 views

CVE-2023-52549

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.7AI score0.00059EPSS

CVE•added 2024/12/12 12:15 p.m.•52 views

CVE-2024-54097

Security vulnerability in the HiView moduleImpact: Successful exploitation of this vulnerability may affect feature implementation and integrity.

7.5CVSS7.2AI score0.00074EPSS

CVE•added 2022/01/10 2:10 p.m.•51 views

CVE-2021-40010

The bone voice ID TA has a heap overflow vulnerability.Successful exploitation of this vulnerability may result in malicious code execution.

9.8CVSS9.7AI score0.00842EPSS

CVE•added 2023/10/11 11:15 a.m.•51 views

CVE-2023-44093

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00081EPSS

CVE•added 2024/04/08 9:15 a.m.•51 views

CVE-2023-52537

Vulnerability of package name verification being bypassed in the HwIms module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00031EPSS

CVE•added 2024/04/08 9:15 a.m.•51 views

CVE-2023-52554

Permission control vulnerability in the Bluetooth module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

6.5CVSS6.8AI score0.00025EPSS

CVE•added 2024/04/07 9:15 a.m.•51 views

CVE-2023-52713

Vulnerability of improper permission control in the window management module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

7.7CVSS6.8AI score0.00022EPSS

CVE•added 2024/04/07 9:15 a.m.•51 views

CVE-2023-52714

Vulnerability of defects introduced in the design process in the hwnff module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.8AI score0.00064EPSS

CVE•added 2024/04/07 8:15 a.m.•51 views

CVE-2024-30413

Vulnerability of improper permission control in the window management module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00072EPSS

CVE•added 2023/03/27 10:15 p.m.•50 views

CVE-2022-48359

The recovery mode for updates has a vulnerability that causes arbitrary disk modification. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2023/03/27 10:15 p.m.•50 views

CVE-2023-26547

The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

7.8CVSS7.6AI score0.00042EPSS

CVE•added 2024/04/08 9:15 a.m.•50 views

CVE-2023-52550

Vulnerability of data verification errors in the kernel module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.7AI score0.00059EPSS

CVE•added 2024/04/07 8:15 a.m.•50 views

CVE-2024-30414

Command injection vulnerability in the AccountManager module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.2AI score0.00511EPSS

CVE•added 2024/06/14 8:15 a.m.•50 views

CVE-2024-36499

Vulnerability of unauthorized screenshot capturing in the WMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.8CVSS6.9AI score0.00028EPSS

CVE•added 2024/12/12 12:15 p.m.•50 views

CVE-2024-54101

Denial of service (DoS) vulnerability in the installation moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.9AI score0.00032EPSS

CVE•added 2023/09/25 1:15 p.m.•49 views

CVE-2023-41303

Command injection vulnerability in the distributed file system module. Successful exploitation of this vulnerability may cause variables in the sock structure to be modified.

7.5CVSS7.6AI score0.00174EPSS

CVE•added 2023/10/11 12:15 p.m.•49 views

CVE-2023-44104

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00069EPSS

CVE•added 2024/04/08 9:15 a.m.•49 views

CVE-2023-52539

Permission verification vulnerability in the Settings module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.8AI score0.00051EPSS

CVE•added 2024/04/08 9:15 a.m.•49 views

CVE-2023-52540

Vulnerability of improper authentication in the Iaware module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS7AI score0.00075EPSS

CVE•added 2024/04/08 9:15 a.m.•49 views

CVE-2023-52542

Permission verification vulnerability in the system module.Impact: Successful exploitation of this vulnerability will affect availability.

6.5CVSS6.8AI score0.00049EPSS

CVE•added 2024/04/07 9:15 a.m.•49 views

CVE-2024-30417

Path traversal vulnerability in the Bluetooth-based sharing module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.8AI score0.0014EPSS

CVE•added 2022/08/10 8:15 p.m.•48 views

CVE-2021-40040

Vulnerability of writing data to an arbitrary address in the HW_KEYMASTER module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.4AI score0.00125EPSS

CVE•added 2023/03/27 10:15 p.m.•48 views

CVE-2022-48291

The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

6.5CVSS6.7AI score0.00015EPSS

CVE•added 2023/05/20 3:15 p.m.•48 views

CVE-2023-1692

The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.0009EPSS

CVE•added 2023/08/13 1:15 p.m.•48 views

CVE-2023-39387

Vulnerability of permission control in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

5.3CVSS5.2AI score0.00057EPSS

CVE•added 2023/09/25 1:15 p.m.•48 views

CVE-2023-41302

Redirection permission verification vulnerability in the home screen module. Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS7.4AI score0.00149EPSS

CVE•added 2023/09/27 3:19 p.m.•48 views

CVE-2023-41305

Vulnerability of 5G messages being sent without being encrypted in a VPN environment in the SMS message module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.4AI score0.00096EPSS

CVE•added 2023/10/11 12:15 p.m.•48 views

CVE-2023-44110

Out-of-bounds access vulnerability in the audio module.Successful exploitation of this vulnerability may affect availability.

4.3CVSS4.7AI score0.00022EPSS

CVE•added 2023/10/11 12:15 p.m.•48 views

CVE-2023-44111

Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.6AI score0.0007EPSS

CVE•added 2023/11/08 10:15 a.m.•48 views

CVE-2023-46760

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

7.5CVSS7.4AI score0.00134EPSS

CVE•added 2024/04/07 9:15 a.m.•48 views

CVE-2023-52717

Permission verification vulnerability in the lock screen module.Impact: Successful exploitation of this vulnerability will affect availability.

5.3CVSS6.8AI score0.00063EPSS

CVE•added 2024/08/08 10:15 a.m.•48 views

CVE-2024-42037

Vulnerability of uncaught exceptions in the Graphics moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

9.3CVSS6.9AI score0.00009EPSS

CVE•added 2023/08/13 1:15 p.m.•47 views

CVE-2023-39399

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9AI score0.00066EPSS

CVE•added 2023/10/11 1:15 p.m.•47 views

CVE-2023-44119

Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.3AI score0.00056EPSS

CVE•added 2024/04/08 9:15 a.m.•47 views

CVE-2023-52388

Permission control vulnerability in the clock module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00062EPSS

CVE•added 2023/03/27 10:15 p.m.•46 views

CVE-2023-26548

The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00112EPSS

CVE•added 2023/10/11 1:15 p.m.•46 views

CVE-2023-44114

Out-of-bounds array vulnerability in the dataipa module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00081EPSS

CVE•added 2023/11/08 11:15 a.m.•46 views

CVE-2023-46756

Permission control vulnerability in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

5.3CVSS5.2AI score0.00086EPSS

CVE•added 2023/11/08 10:15 a.m.•46 views

CVE-2023-46761

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

7.5CVSS7.4AI score0.00134EPSS

CVE•added 2024/04/08 9:15 a.m.•46 views

CVE-2023-52544

Vulnerability of file path verification being bypassed in the email module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

4.3CVSS6.8AI score0.00059EPSS

Total number of security vulnerabilities254