Harmonyos@4.2.0 Security Vulnerabilities and Issues — Harmonyos@4.2.0 CVE List

Lucene search

HuaweiHarmonyos4.2.0

79 matches found

CVE•added 2024/09/04 2:15 a.m.•62 views

CVE-2024-45442

Vulnerability of permission verification for APIs in the DownloadProviderMain moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.9AI score0.00071EPSS

CVE•added 2024/07/25 12:15 p.m.•57 views

CVE-2023-7271

Privilege escalation vulnerability in the NMS moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS7.4AI score0.00021EPSS

CVE•added 2024/06/14 8:15 a.m.•53 views

CVE-2024-36501

Memory management vulnerability in the boottime moduleImpact: Successful exploitation of this vulnerability can affect integrity.

5.6CVSS7.1AI score0.00047EPSS

CVE•added 2024/08/08 9:15 a.m.•53 views

CVE-2024-42031

Access permission verification vulnerability in the Settings module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.9AI score0.00097EPSS

CVE•added 2024/12/12 12:15 p.m.•52 views

CVE-2024-54097

Security vulnerability in the HiView moduleImpact: Successful exploitation of this vulnerability may affect feature implementation and integrity.

7.5CVSS7.2AI score0.00074EPSS

CVE•added 2024/06/14 8:15 a.m.•50 views

CVE-2024-36499

Vulnerability of unauthorized screenshot capturing in the WMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.8CVSS6.9AI score0.00028EPSS

CVE•added 2024/12/12 12:15 p.m.•50 views

CVE-2024-54101

Denial of service (DoS) vulnerability in the installation moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS6.9AI score0.00032EPSS

CVE•added 2024/06/14 8:15 a.m.•49 views

CVE-2024-5465

Function vulnerabilities in the Calendar moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.9CVSS7.2AI score0.00029EPSS

CVE•added 2024/06/14 8:15 a.m.•48 views

CVE-2024-36503

Memory management vulnerability in the Gralloc moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.3CVSS7.1AI score0.00053EPSS

CVE•added 2024/08/08 10:15 a.m.•48 views

CVE-2024-42037

Vulnerability of uncaught exceptions in the Graphics moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

9.3CVSS6.9AI score0.00009EPSS

CVE•added 2024/08/08 10:15 a.m.•48 views

CVE-2024-42038

Vulnerability of PIN enhancement failures in the screen lock moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

8.8CVSS6.9AI score0.00022EPSS

CVE•added 2024/12/12 12:15 p.m.•48 views

CVE-2024-54102

Race condition vulnerability in the DDR moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.1CVSS6.9AI score0.0002EPSS

CVE•added 2024/07/25 12:15 p.m.•47 views

CVE-2024-39672

Memory request logic vulnerability in the memory module.Impact: Successful exploitation of this vulnerability will affect integrity and availability.

8.4CVSS7.2AI score0.00033EPSS

CVE•added 2024/08/08 10:15 a.m.•47 views

CVE-2024-42035

Permission control vulnerability in the App Multiplier moduleImpact:Successful exploitation of this vulnerability may affect functionality and confidentiality.

8.4CVSS7AI score0.00022EPSS

CVE•added 2024/09/27 11:15 a.m.•47 views

CVE-2024-47293

Out-of-bounds write vulnerability in the HAL-WIFI moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7AI score0.00038EPSS

CVE•added 2024/06/14 8:15 a.m.•46 views

CVE-2024-36502

Out-of-bounds read vulnerability in the audio moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.9CVSS7AI score0.00033EPSS

CVE•added 2024/08/08 10:15 a.m.•46 views

CVE-2024-42036

Access permission verification vulnerability in the Notepad moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.9AI score0.00042EPSS

CVE•added 2024/09/04 3:15 a.m.•46 views

CVE-2024-8298

Memory request vulnerability in the memory management moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS7.2AI score0.00022EPSS

CVE•added 2024/07/25 12:15 p.m.•45 views

CVE-2024-39671

Access control vulnerability in the security verification module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

9.3CVSS7.2AI score0.00022EPSS

CVE•added 2024/09/04 3:15 a.m.•45 views

CVE-2024-45443

Directory traversal vulnerability in the cust moduleImpact: Successful exploitation of this vulnerability will affect availability and confidentiality.

9.1CVSS7AI score0.00139EPSS

CVE•added 2024/09/04 3:15 a.m.•45 views

CVE-2024-45444

Access permission verification vulnerability in the WMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00023EPSS

CVE•added 2025/02/06 1:15 p.m.•45 views

CVE-2024-57958

Out-of-bounds array read vulnerability in the FFRT moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

9.1CVSS6.8AI score0.00032EPSS

CVE•added 2025/02/06 1:15 p.m.•45 views

CVE-2024-57959

Use-After-Free (UAF) vulnerability in the display moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

9.8CVSS6.9AI score0.00031EPSS

CVE•added 2025/02/06 1:15 p.m.•45 views

CVE-2024-57960

Input verification vulnerability in the ExternalStorageProvider moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.7CVSS7.6AI score0.0003EPSS

CVE•added 2024/08/08 10:15 a.m.•44 views

CVE-2024-42033

Access control vulnerability in the security verification modulempact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

7.1CVSS7AI score0.00013EPSS

CVE•added 2024/09/04 3:15 a.m.•44 views

CVE-2024-45446

Access permission verification vulnerability in the camera driver moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS7.1AI score0.00021EPSS

CVE•added 2025/02/06 1:15 p.m.•44 views

CVE-2024-57961

Out-of-bounds write vulnerability in the emcom moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

9.8CVSS6.9AI score0.00034EPSS

CVE•added 2024/06/14 8:15 a.m.•43 views

CVE-2024-36500

Privilege escalation vulnerability in the AMS moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.8CVSS7.2AI score0.00047EPSS

CVE•added 2024/12/12 12:15 p.m.•43 views

CVE-2024-54096

Vulnerability of improper access control in the MTP moduleImpact: Successful exploitation of this vulnerability may affect integrity and accuracy.

5.5CVSS5.3AI score0.00009EPSS

CVE•added 2024/12/12 12:15 p.m.•43 views

CVE-2024-54098

Service logic error vulnerability in the system service moduleImpact: Successful exploitation of this vulnerability may affect service integrity.

8.5CVSS8.4AI score0.00058EPSS

CVE•added 2024/05/14 3:37 p.m.•42 views

CVE-2024-32997

Race condition vulnerability in the binder driver moduleImpact: Successful exploitation of this vulnerability will affect availability.

8.4CVSS6.8AI score0.00034EPSS

CVE•added 2024/07/25 12:15 p.m.•42 views

CVE-2024-39674

Plaintext vulnerability in the Gallery search module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.1AI score0.00013EPSS

CVE•added 2024/09/27 11:15 a.m.•42 views

CVE-2024-47292

Path traversal vulnerability in the Bluetooth moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS7AI score0.00039EPSS

CVE•added 2024/12/12 12:15 p.m.•42 views

CVE-2024-54100

Vulnerability of improper access control in the secure input moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.3AI score0.00046EPSS

CVE•added 2024/08/08 10:15 a.m.•41 views

CVE-2024-42034

LaunchAnywhere vulnerability in the account module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

6.6CVSS7AI score0.00021EPSS

CVE•added 2024/09/04 3:15 a.m.•41 views

CVE-2024-45447

Access control vulnerability in the camera framework moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00018EPSS

CVE•added 2024/11/05 10:21 a.m.•41 views

CVE-2024-51527

Permission control vulnerability in the Gallery appImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.5AI score0.00011EPSS

CVE•added 2024/11/05 12:15 p.m.•41 views

CVE-2024-51530

LaunchAnywhere vulnerability in the account moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.6CVSS7AI score0.00026EPSS

CVE•added 2024/07/25 12:15 p.m.•40 views

CVE-2024-39673

Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.1CVSS7.1AI score0.00025EPSS

CVE•added 2024/09/04 3:15 a.m.•40 views

CVE-2024-45449

Access permission verification vulnerability in the ringtone setting moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00022EPSS

CVE•added 2024/09/04 2:15 a.m.•40 views

CVE-2024-45450

Permission control vulnerability in the software update module.Impact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00066EPSS

CVE•added 2024/06/14 8:15 a.m.•40 views

CVE-2024-5464

Vulnerability of insufficient permission verification in the NearLink moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

4CVSS7.1AI score0.00053EPSS

CVE•added 2025/01/08 4:15 a.m.•40 views

CVE-2024-56448

Vulnerability of improper access control in the home screen widget moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.9AI score0.00028EPSS

CVE•added 2024/07/25 12:15 p.m.•39 views

CVE-2024-39670

Privilege escalation vulnerability in the account synchronisation module.Impact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.4AI score0.00021EPSS

CVE•added 2024/08/08 9:15 a.m.•39 views

CVE-2024-42030

Access permission verification vulnerability in the content sharing pop-up moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS6.3AI score0.00023EPSS

CVE•added 2024/09/04 2:15 a.m.•39 views

CVE-2024-42039

Access control vulnerability in the SystemUI moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00075EPSS

CVE•added 2024/05/14 3:37 p.m.•38 views

CVE-2024-32996

Privilege escalation vulnerability in the account moduleImpact: Successful exploitation of this vulnerability will affect availability.

6.2CVSS7.1AI score0.00044EPSS

CVE•added 2024/09/04 3:15 a.m.•38 views

CVE-2024-45445

Vulnerability of resources not being closed or released in the keystore moduleImpact: Successful exploitation of this vulnerability will affect availability.

5.5CVSS7.1AI score0.00021EPSS

CVE•added 2024/09/04 3:15 a.m.•38 views

CVE-2024-45448

Page table protection configuration vulnerability in the trusted firmware moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.2AI score0.00014EPSS

CVE•added 2024/09/27 11:15 a.m.•38 views

CVE-2024-47294

Access permission verification vulnerability in the input method framework moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS6.9AI score0.00051EPSS

Total number of security vulnerabilities79