Harmonyos@3.1.0 Security Vulnerabilities and Issues — Page 3 of Harmonyos@3.1.0 CVE List

Lucene search

HuaweiHarmonyos3.1.0

254 matches found

CVE•added 2024/04/08 9:15 a.m.•46 views

CVE-2023-52552

Input verification vulnerability in the power module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00072EPSS

CVE•added 2024/08/08 10:15 a.m.•46 views

CVE-2024-42036

Access permission verification vulnerability in the Notepad moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.9AI score0.00042EPSS

CVE•added 2023/03/27 10:15 p.m.•45 views

CVE-2022-48355

The Bluetooth module has a heap out-of-bounds read vulnerability. Successful exploitation of this vulnerability can cause the Bluetooth process to crash.

6.5CVSS6.3AI score0.00037EPSS

CVE•added 2023/08/13 1:15 p.m.•45 views

CVE-2023-39391

Vulnerability of system file information leakage in the USB Service module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.3AI score0.00081EPSS

CVE•added 2023/09/25 1:15 p.m.•45 views

CVE-2023-41300

Vulnerability of parameters not being strictly verified in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

7.5CVSS7.4AI score0.00134EPSS

CVE•added 2023/10/11 12:15 p.m.•45 views

CVE-2023-44095

Use-After-Free (UAF) vulnerability in the surfaceflinger module.Successful exploitation of this vulnerability can cause system crash.

7.5CVSS7.5AI score0.00072EPSS

CVE•added 2023/11/08 11:15 a.m.•45 views

CVE-2023-46758

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

7.5CVSS7.5AI score0.00114EPSS

CVE•added 2024/04/08 10:15 a.m.•45 views

CVE-2023-52385

Out-of-bounds write vulnerability in the RSMC module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.8AI score0.00019EPSS

CVE•added 2024/04/08 9:15 a.m.•45 views

CVE-2023-52546

Vulnerability of package name verification being bypassed in the Calendar app.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.8AI score0.00015EPSS

CVE•added 2024/04/07 9:15 a.m.•45 views

CVE-2024-30418

Vulnerability of insufficient permission verification in the app management module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.8AI score0.00072EPSS

CVE•added 2024/09/04 3:15 a.m.•45 views

CVE-2024-45443

Directory traversal vulnerability in the cust moduleImpact: Successful exploitation of this vulnerability will affect availability and confidentiality.

9.1CVSS7AI score0.00139EPSS

CVE•added 2024/09/04 3:15 a.m.•45 views

CVE-2024-45444

Access permission verification vulnerability in the WMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00023EPSS

CVE•added 2025/02/06 1:15 p.m.•45 views

CVE-2024-57960

Input verification vulnerability in the ExternalStorageProvider moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.7CVSS7.6AI score0.0003EPSS

CVE•added 2023/08/13 12:15 p.m.•44 views

CVE-2023-39383

Vulnerability of input parameters being not strictly verified in the AMS module. Successful exploitation of this vulnerability may compromise apps' data security.

7.5CVSS7.4AI score0.00059EPSS

CVE•added 2023/08/13 12:15 p.m.•44 views

CVE-2023-39392

Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to be maliciously modified and overwritten.

7.5CVSS7.4AI score0.00027EPSS

CVE•added 2023/08/13 1:15 p.m.•44 views

CVE-2023-39401

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9.1AI score0.00102EPSS

CVE•added 2023/10/11 11:15 a.m.•44 views

CVE-2023-44094

Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to restart.

5.3CVSS5.2AI score0.00032EPSS

CVE•added 2023/11/08 10:15 a.m.•44 views

CVE-2023-46767

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/04/07 9:15 a.m.•44 views

CVE-2024-30416

Use After Free (UAF) vulnerability in the underlying driver module.Impact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.9AI score0.00084EPSS

CVE•added 2024/08/08 10:15 a.m.•44 views

CVE-2024-42033

Access control vulnerability in the security verification modulempact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

7.1CVSS7AI score0.00013EPSS

CVE•added 2024/09/04 3:15 a.m.•44 views

CVE-2024-45446

Access permission verification vulnerability in the camera driver moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS7.1AI score0.00021EPSS

CVE•added 2023/03/27 10:15 p.m.•43 views

CVE-2022-48346

The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00085EPSS

CVE•added 2024/02/18 7:15 a.m.•43 views

CVE-2022-48621

Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00042EPSS

CVE•added 2023/06/19 5:15 p.m.•43 views

CVE-2023-34155

Vulnerability of unauthorized calling on HUAWEI phones and tablets.Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00087EPSS

CVE•added 2023/09/25 11:15 a.m.•43 views

CVE-2023-39409

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

7.5CVSS7.4AI score0.00134EPSS

CVE•added 2023/11/08 9:15 a.m.•43 views

CVE-2023-44098

Vulnerability of missing encryption in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0007EPSS

CVE•added 2024/06/14 8:15 a.m.•43 views

CVE-2024-36500

Privilege escalation vulnerability in the AMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.8CVSS7.2AI score0.00047EPSS

CVE•added 2024/09/27 11:15 a.m.•43 views

CVE-2024-47290

Input validation vulnerability in the USB service moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS5.5AI score0.00012EPSS

CVE•added 2024/12/12 12:15 p.m.•43 views

CVE-2024-54096

Vulnerability of improper access control in the MTP moduleImpact: Successful exploitation of this vulnerability may affect integrity and accuracy.

5.5CVSS5.3AI score0.00009EPSS

CVE•added 2024/12/12 12:15 p.m.•43 views

CVE-2024-54098

Service logic error vulnerability in the system service moduleImpact: Successful exploitation of this vulnerability may affect service integrity.

8.5CVSS8.4AI score0.00058EPSS

CVE•added 2023/03/27 10:15 p.m.•42 views

CVE-2023-26549

The SystemUI module has a vulnerability of repeated app restart due to improper parameters. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00094EPSS

CVE•added 2023/08/13 12:15 p.m.•42 views

CVE-2023-39382

Input verification vulnerability in the audio module. Successful exploitation of this vulnerability may cause virtual machines (VMs) to restart.

7.5CVSS7.4AI score0.00072EPSS

CVE•added 2023/08/13 1:15 p.m.•42 views

CVE-2023-39395

Mismatch vulnerability in the serialization process in the communication system. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00108EPSS

CVE•added 2023/10/11 12:15 p.m.•42 views

CVE-2023-44101

The Bluetooth module has a vulnerability in permission control for broadcast notifications.Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.5AI score0.00071EPSS

CVE•added 2023/10/11 1:15 p.m.•42 views

CVE-2023-44105

Vulnerability of permissions not being strictly verified in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally.

9.8CVSS9.3AI score0.00074EPSS

CVE•added 2023/11/08 10:15 a.m.•42 views

CVE-2023-46763

Vulnerability of background app permission management in the framework module. Successful exploitation of this vulnerability may cause background apps to start maliciously.

5.3CVSS5.2AI score0.00107EPSS

CVE•added 2024/07/25 12:15 p.m.•42 views

CVE-2024-39674

Plaintext vulnerability in the Gallery search module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.1AI score0.00013EPSS

CVE•added 2024/09/27 11:15 a.m.•42 views

CVE-2024-47292

Path traversal vulnerability in the Bluetooth moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS7AI score0.00039EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54100

Vulnerability of improper access control in the secure input moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.3AI score0.00046EPSS

CVE•added 2023/04/16 8:15 a.m.•41 views

CVE-2022-48313

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

6.5CVSS6.4AI score0.00013EPSS

CVE•added 2023/08/13 12:15 p.m.•41 views

CVE-2023-39389

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.

7.5CVSS7.4AI score0.00094EPSS

CVE•added 2023/08/13 1:15 p.m.•41 views

CVE-2023-39403

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

9.1CVSS9AI score0.00057EPSS

CVE•added 2023/09/25 9:15 a.m.•41 views

CVE-2023-39408

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

7.5CVSS7.4AI score0.00072EPSS

CVE•added 2023/09/27 3:19 p.m.•41 views

CVE-2023-41309

Permission control vulnerability in the MediaPlaybackController module. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00128EPSS

CVE•added 2023/10/11 12:15 p.m.•41 views

CVE-2023-44106

API permission management vulnerability in the Fwk-Display module.Successful exploitation of this vulnerability may cause features to perform abnormally.

9.8CVSS9.2AI score0.00084EPSS

CVE•added 2023/10/11 11:15 a.m.•41 views

CVE-2023-44109

Clone vulnerability in the huks ta module.Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00157EPSS

CVE•added 2023/11/08 10:15 a.m.•41 views

CVE-2023-46765

Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/08/08 10:15 a.m.•41 views

CVE-2024-42034

LaunchAnywhere vulnerability in the account module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

6.6CVSS7AI score0.00021EPSS

CVE•added 2024/09/04 3:15 a.m.•41 views

CVE-2024-45447

Access control vulnerability in the camera framework moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00018EPSS

CVE•added 2024/11/05 10:21 a.m.•41 views

CVE-2024-51527

Permission control vulnerability in the Gallery appImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.5AI score0.00012EPSS

Total number of security vulnerabilities254