Harmonyos Security Vulnerabilities and Issues — Harmonyos CVE List

Vulnerability of unauthorized access to email attachments in the email module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.3AI score0.00111EPSS

CVE•added 2023/12/06 9:15 a.m.•34 views

CVE-2023-6273

Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.

5.3CVSS5.3AI score0.00037EPSS

CVE•added 2023/12/06 9:15 a.m.•33 views

CVE-2023-49239

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00095EPSS

CVE•added 2023/12/06 9:15 a.m.•33 views

CVE-2023-49245

Unauthorized access vulnerability in the Huawei Share module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2023/12/06 9:15 a.m.•32 views

CVE-2023-49241

API permission control vulnerability in the network management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2023/12/06 9:15 a.m.•31 views

CVE-2023-46773

Permission management vulnerability in the PMS module. Successful exploitation of this vulnerability may cause privilege escalation.

9.8CVSS9.3AI score0.00116EPSS

CVE•added 2023/12/06 9:15 a.m.•31 views

CVE-2023-49242

Free broadcast vulnerability in the running management module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2023/12/06 9:15 a.m.•30 views

CVE-2023-44113

Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.4AI score0.00088EPSS

CVE•added 2023/12/06 9:15 a.m.•29 views

CVE-2023-49244

Permission management vulnerability in the multi-user module. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00111EPSS

CVE•added 2023/12/06 9:15 a.m.•28 views

CVE-2023-49248

Vulnerability of unauthorized file access in the Settings app. Successful exploitation of this vulnerability may cause unauthorized file access.

5.5CVSS5.4AI score0.00038EPSS

CVE•added 2023/12/06 9:15 a.m.•24 views

CVE-2023-49247

Permission verification vulnerability in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

7.5CVSS7.5AI score0.00095EPSS