Harmonyos Security Vulnerabilities and Issues — Harmonyos CVE List

Lucene search

HuaweiHarmonyos

14 matches found

CVE•added 2022/06/13 4:15 p.m.•485 views

CVE-2022-31757

The setting module has a vulnerability of improper use of APIs. Successful exploitation of this vulnerability may affect data confidentiality.

7.5CVSS7.5AI score0.00131EPSS

CVE•added 2022/06/13 3:15 p.m.•68 views

CVE-2022-31755

The communication module has a vulnerability of improper permission preservation. Successful exploitation of this vulnerability may affect system availability.

5.5CVSS5.5AI score0.00056EPSS

CVE•added 2022/06/13 4:15 p.m.•67 views

CVE-2022-31753

The voice wakeup module has a vulnerability of using externally-controlled format strings. Successful exploitation of this vulnerability may affect system availability.

7.5CVSS7.5AI score0.00191EPSS

CVE•added 2022/06/13 4:15 p.m.•66 views

CVE-2022-31760

Dialog boxes can still be displayed even if the screen is locked in carrier-customized USSD services. Successful exploitation of this vulnerability may affect data integrity and confidentiality.

9.1CVSS9.1AI score0.00127EPSS

CVE•added 2022/06/13 3:15 p.m.•66 views

CVE-2022-31762

The AMS module has a vulnerability in input validation. Successful exploitation of this vulnerability may cause privilege escalation.

7.8CVSS7.6AI score0.00074EPSS

CVE•added 2022/06/13 3:15 p.m.•63 views

CVE-2021-46814

The video framework has an out-of-bounds memory read/write vulnerability. Successful exploitation of this vulnerability may affect system availability.

7.5CVSS7.5AI score0.00218EPSS

CVE•added 2022/06/13 6:15 p.m.•62 views

CVE-2021-40036

The bone voice ID TA has a memory overwrite vulnerability. Successful exploitation of this vulnerability may result in malicious code execution.

9.8CVSS9.6AI score0.00276EPSS

CVE•added 2022/06/13 3:15 p.m.•58 views

CVE-2022-31756

The fingerprint sensor module has design defects. Successful exploitation of this vulnerability may affect data confidentiality.

5.5CVSS5.5AI score0.00029EPSS

CVE•added 2022/06/13 3:15 p.m.•58 views

CVE-2022-31758

The kernel module has the race condition vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

4.7CVSS4.7AI score0.00019EPSS

CVE•added 2022/06/13 4:15 p.m.•55 views

CVE-2021-46811

HwSEServiceAPP has a vulnerability in permission management. Successful exploitation of this vulnerability may cause disclosure of the Card Production Life Cycle (CPLC) information.

5.3CVSS5.2AI score0.00082EPSS

CVE•added 2022/06/13 3:15 p.m.•55 views

CVE-2022-31763

The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful exploitation of this vulnerability may affect system availability.

5.5CVSS5.5AI score0.00019EPSS

CVE•added 2022/06/13 3:15 p.m.•54 views

CVE-2022-31751

The kernel emcom module has multi-thread contention. Successful exploitation of this vulnerability may affect system availability.

5.5CVSS5.4AI score0.00067EPSS

CVE•added 2022/06/13 3:15 p.m.•51 views

CVE-2022-31759

AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this vulnerability may affect system availability.

5.5CVSS5.5AI score0.00021EPSS

CVE•added 2022/06/13 4:15 p.m.•50 views

CVE-2021-46812

The Device Manager has a vulnerability in multi-device interaction. Successful exploitation of this vulnerability may affect data integrity.

7.5CVSS7.5AI score0.00098EPSS