Harmonyos Security Vulnerabilities and Issues — Harmonyos CVE List

Lucene search

HuaweiHarmonyos

22 matches found

CVE•added 2024/01/16 10:15 a.m.•67 views

CVE-2023-52106

Vulnerability of permission verification for APIs in the DownloadProviderMain module.Impact: Successful exploitation of this vulnerability will affect integrity and availability.

9.1CVSS6.8AI score0.00058EPSS

CVE•added 2024/01/16 8:15 a.m.•40 views

CVE-2023-44117

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0008EPSS

CVE•added 2024/01/16 9:15 a.m.•35 views

CVE-2023-52115

The iaware module has a Use-After-Free (UAF) vulnerability. Successful exploitation of this vulnerability may affect the system functions.

7.5CVSS7.5AI score0.00063EPSS

CVE•added 2024/01/16 8:15 a.m.•33 views

CVE-2023-4566

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0008EPSS

CVE•added 2024/01/16 10:15 a.m.•32 views

CVE-2023-52103

Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read.

9.8CVSS9.5AI score0.00203EPSS

CVE•added 2024/01/16 10:15 a.m.•31 views

CVE-2023-52100

The Celia Keyboard module has a vulnerability in access control. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00136EPSS

CVE•added 2024/01/16 8:15 a.m.•30 views

CVE-2023-52109

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00073EPSS

CVE•added 2024/01/16 10:15 a.m.•28 views

CVE-2023-52104

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/01/16 9:15 a.m.•28 views

CVE-2023-52114

Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.

7.5CVSS7.4AI score0.00054EPSS

CVE•added 2024/01/16 8:15 a.m.•27 views

CVE-2023-44112

Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiality.

7.5CVSS7.6AI score0.00098EPSS

CVE•added 2024/01/16 9:15 a.m.•27 views

CVE-2023-52098

Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.5AI score0.00072EPSS

CVE•added 2024/01/16 10:15 a.m.•27 views

CVE-2023-52105

The nearby module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.7AI score0.00178EPSS

CVE•added 2024/01/16 8:15 a.m.•27 views

CVE-2023-52110

The sensor module has an out-of-bounds access vulnerability.Successful exploitation of this vulnerability may affect availability.

7.5CVSS7.5AI score0.00063EPSS

CVE•added 2024/01/16 9:15 a.m.•27 views

CVE-2023-52116

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

7.5CVSS7.5AI score0.00072EPSS

CVE•added 2024/01/16 10:15 a.m.•26 views

CVE-2023-52102

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00175EPSS

CVE•added 2024/01/16 9:15 a.m.•26 views

CVE-2023-52107

Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00071EPSS

CVE•added 2024/01/16 8:15 a.m.•26 views

CVE-2023-52111

Authorization vulnerability in the BootLoader module. Successful exploitation of this vulnerability may affect service integrity.

7.5CVSS7.5AI score0.00054EPSS

CVE•added 2024/01/16 10:15 a.m.•25 views

CVE-2023-52101

Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availability and integrity.

9.1CVSS9.1AI score0.00132EPSS

CVE•added 2024/01/16 8:15 a.m.•25 views

CVE-2023-52112

Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation of this vulnerability may cause features to perform abnormally.

5.3CVSS5.3AI score0.00024EPSS

CVE•added 2024/01/16 10:15 a.m.•23 views

CVE-2023-52099

Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.0005EPSS

CVE•added 2024/01/16 9:15 a.m.•22 views

CVE-2023-52108

Vulnerability of process priorities being raised in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.4AI score0.00063EPSS

CVE•added 2024/01/16 8:15 a.m.•19 views

CVE-2023-52113

launchAnyWhere vulnerability in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.

7.5CVSS7.5AI score0.00054EPSS