Harmonyos@5.0.0 Security Vulnerabilities and Issues — Page 2 of Harmonyos@5.0.0 CVE List

Lucene search

HuaweiHarmonyos5.0.0

102 matches found

CVE•added 2025/05/06 8:15 a.m.•39 views

CVE-2024-58252

Vulnerability of insufficient information protection in the media library moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS6.2AI score0.00009EPSS

CVE•added 2025/06/06 7:15 a.m.•39 views

CVE-2025-48905

Wasm exception capture vulnerability in the arkweb v8 moduleImpact: Successful exploitation of this vulnerability may cause the failure to capture specific Wasm exception types.

8.1CVSS6.8AI score0.00032EPSS

CVE•added 2025/06/06 7:15 a.m.•39 views

CVE-2025-48911

Vulnerability of improper permission assignment in the note sharing moduleImpact: Successful exploitation of this vulnerability may affect availability.

8.2CVSS6.9AI score0.00008EPSS

CVE•added 2024/11/05 9:15 a.m.•38 views

CVE-2024-51514

Vulnerability of pop-up windows belonging to no app in the VPN moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.3AI score0.00014EPSS

CVE•added 2024/11/05 10:21 a.m.•38 views

CVE-2024-51526

Permission control vulnerability in the hidebug moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

8.2CVSS8.4AI score0.00008EPSS

CVE•added 2024/12/12 12:15 p.m.•38 views

CVE-2024-54104

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.1AI score0.00035EPSS

CVE•added 2025/01/08 4:15 a.m.•38 views

CVE-2024-54121

Startup control vulnerability in the ability moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

7.5CVSS6.9AI score0.00051EPSS

CVE•added 2025/01/08 3:15 a.m.•38 views

CVE-2024-56444

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00039EPSS

CVE•added 2025/01/08 4:15 a.m.•38 views

CVE-2024-56452

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS6.9AI score0.00013EPSS

CVE•added 2025/04/07 4:15 a.m.•38 views

CVE-2024-58106

Buffer overflow vulnerability in the codec moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.4AI score0.0002EPSS

CVE•added 2025/04/07 4:15 a.m.•38 views

CVE-2024-58111

Exception capture failure vulnerability in the SVG parsing module of the ArkUI frameworkImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.1AI score0.00038EPSS

CVE•added 2025/06/06 7:15 a.m.•38 views

CVE-2024-58114

Resource allocation control failure vulnerability in the ArkUI frameworkImpact: Successful exploitation of this vulnerability may affect availability.

4CVSS7AI score0.00009EPSS

CVE•added 2024/11/05 9:15 a.m.•37 views

CVE-2024-51510

Out-of-bounds access vulnerability in the logo moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.6CVSS7.5AI score0.00018EPSS

CVE•added 2024/11/05 9:15 a.m.•37 views

CVE-2024-51512

Vulnerability of parameter type not being verified in the WantAgent moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.9AI score0.00023EPSS

CVE•added 2024/11/05 10:21 a.m.•37 views

CVE-2024-51521

Input parameter verification vulnerability in the background service moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.7CVSS7.1AI score0.00015EPSS

CVE•added 2025/01/08 3:15 a.m.•37 views

CVE-2024-56439

Access control vulnerability in the identity authentication moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.7AI score0.00029EPSS

CVE•added 2025/01/08 4:15 a.m.•37 views

CVE-2024-56454

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS6.9AI score0.00013EPSS

CVE•added 2025/04/07 4:15 a.m.•37 views

CVE-2024-58108

Buffer overflow vulnerability in the codec moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.4AI score0.0002EPSS

CVE•added 2025/04/07 4:15 a.m.•37 views

CVE-2024-58113

Vulnerability of improper resource management in the memory management moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.1AI score0.0003EPSS

CVE•added 2025/06/06 7:15 a.m.•37 views

CVE-2025-48908

Ability Auto Startup service vulnerability in the foundation processImpact: Successful exploitation of this vulnerability may affect availability.

6.7CVSS6.9AI score0.00007EPSS

CVE•added 2025/06/06 7:15 a.m.•37 views

CVE-2025-48910

Buffer overflow vulnerability in the DFile moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS7.2AI score0.00012EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51518

Vulnerability of message types not being verified in the advanced messaging modulImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.1AI score0.00029EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51520

Vulnerability of input parameters not being verified in the HDC moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS7.1AI score0.00023EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51522

Vulnerability of improper device information processing in the device management moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.8AI score0.00015EPSS

CVE•added 2024/11/05 10:21 a.m.•36 views

CVE-2024-51523

Information management vulnerability in the Gallery moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.1AI score0.00037EPSS

CVE•added 2024/12/12 12:15 p.m.•36 views

CVE-2024-54109

Read/Write vulnerability in the image decoding moduleImpact: Successful exploitation of this vulnerability will affect availability.

7.5CVSS6.5AI score0.00124EPSS

CVE•added 2024/12/12 1:15 p.m.•36 views

CVE-2024-54119

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS6.4AI score0.00035EPSS

CVE•added 2025/06/06 7:15 a.m.•36 views

CVE-2025-48907

Deserialization vulnerability in the IPC moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS7.1AI score0.00009EPSS

CVE•added 2024/11/05 9:15 a.m.•35 views

CVE-2024-51515

Race condition vulnerability in the kernel network moduleImpact:Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.3AI score0.00009EPSS

CVE•added 2025/01/08 3:15 a.m.•35 views

CVE-2024-54120

Race condition vulnerability in the distributed notification moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

5.9CVSS6.9AI score0.00018EPSS

CVE•added 2025/01/08 3:15 a.m.•35 views

CVE-2024-56437

Vulnerability of input parameters not being verified in the widget framework moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS5.6AI score0.00042EPSS

CVE•added 2025/03/04 8:15 a.m.•35 views

CVE-2024-58049

Permission verification vulnerability in the media library moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.2AI score0.0001EPSS

CVE•added 2025/03/04 8:15 a.m.•35 views

CVE-2024-58050

Vulnerability of improper access permission in the HDC moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS6.3AI score0.00011EPSS

CVE•added 2025/04/07 4:15 a.m.•35 views

CVE-2024-58115

Buffer overflow vulnerability in the SVG parsing module of the ArkUI frameworkImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.4AI score0.00022EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48904

Vulnerability that cards can call unauthorized APIs in the FRS processImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.9AI score0.00007EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48906

Authentication bypass vulnerability in the DSoftBus moduleImpact: Successful exploitation of this vulnerability may affect availability.

8.8CVSS7AI score0.00025EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48909

Bypass vulnerability in the device management channelImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.1CVSS6.9AI score0.00019EPSS

CVE•added 2024/11/05 10:21 a.m.•34 views

CVE-2024-51524

Permission control vulnerability in the Wi-Fi moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS7.1AI score0.00019EPSS

CVE•added 2025/01/08 2:15 a.m.•34 views

CVE-2024-56436

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.0002EPSS

CVE•added 2025/01/08 3:15 a.m.•34 views

CVE-2024-56443

Cross-process screen stack vulnerability in the UIExtension moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7AI score0.00027EPSS

CVE•added 2025/01/08 4:15 a.m.•34 views

CVE-2024-56453

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.8CVSS6.9AI score0.00012EPSS

CVE•added 2025/04/07 4:15 a.m.•34 views

CVE-2024-58109

Buffer overflow vulnerability in the codec moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.4AI score0.0002EPSS

CVE•added 2025/04/07 4:15 a.m.•34 views

CVE-2024-58110

Buffer overflow vulnerability in the codec moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.4AI score0.0002EPSS

CVE•added 2024/11/05 9:15 a.m.•33 views

CVE-2024-51516

Permission control vulnerability in the ability moduleImpact: Successful exploitation of this vulnerability may cause features to function abnormally.

6.2CVSS6.3AI score0.00015EPSS

CVE•added 2025/01/08 4:15 a.m.•33 views

CVE-2024-56455

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS6.9AI score0.00013EPSS

CVE•added 2025/01/08 3:15 a.m.•32 views

CVE-2024-56445

Instruction authentication bypass vulnerability in the Findnetwork moduleImpact: Successful exploitation of this vulnerability may cause features to perform abnormally.

5.3CVSS4.8AI score0.00077EPSS

CVE•added 2025/03/04 8:15 a.m.•32 views

CVE-2024-58045

Multi-concurrency vulnerability in the media digital copyright protection moduleImpact: Successful exploitation of this vulnerability may affect availability.

8.6CVSS8.6AI score0.00009EPSS

CVE•added 2025/03/04 8:15 a.m.•32 views

CVE-2024-58046

Permission management vulnerability in the lock screen moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

6.2CVSS6.3AI score0.00011EPSS

CVE•added 2025/03/04 8:15 a.m.•32 views

CVE-2024-58047

Permission verification vulnerability in the media library moduleImpact: Successful exploitation of this vulnerability may affect service confidentiality.

5.5CVSS5.1AI score0.0001EPSS

CVE•added 2024/11/05 9:15 a.m.•31 views

CVE-2024-51511

Vulnerability of parameter type not being verified in the WantAgent moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.9AI score0.00023EPSS

Total number of security vulnerabilities102