Harmonyos Security Vulnerabilities and Issues — Harmonyos CVE List

Lucene search

HuaweiHarmonyos

11 matches found

CVE•added 2025/06/06 7:15 a.m.•40 views

CVE-2025-48903

Permission bypass vulnerability in the media library moduleImpact: Successful exploitation of this vulnerability may affect availability.

7.8CVSS7AI score0.00007EPSS

CVE•added 2025/06/06 7:15 a.m.•39 views

CVE-2025-48905

Wasm exception capture vulnerability in the arkweb v8 moduleImpact: Successful exploitation of this vulnerability may cause the failure to capture specific Wasm exception types.

8.1CVSS6.8AI score0.00032EPSS

CVE•added 2025/06/06 7:15 a.m.•39 views

CVE-2025-48911

Vulnerability of improper permission assignment in the note sharing moduleImpact: Successful exploitation of this vulnerability may affect availability.

8.2CVSS6.9AI score0.00008EPSS

CVE•added 2025/06/06 7:15 a.m.•38 views

CVE-2024-58114

Resource allocation control failure vulnerability in the ArkUI frameworkImpact: Successful exploitation of this vulnerability may affect availability.

4CVSS7AI score0.00009EPSS

CVE•added 2025/06/06 7:15 a.m.•37 views

CVE-2025-48908

Ability Auto Startup service vulnerability in the foundation processImpact: Successful exploitation of this vulnerability may affect availability.

6.7CVSS6.9AI score0.00007EPSS

CVE•added 2025/06/06 7:15 a.m.•37 views

CVE-2025-48910

Buffer overflow vulnerability in the DFile moduleImpact: Successful exploitation of this vulnerability may affect availability.

5.5CVSS7.2AI score0.00012EPSS

CVE•added 2025/06/06 7:15 a.m.•36 views

CVE-2025-48907

Deserialization vulnerability in the IPC moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS7.1AI score0.00009EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48902

Vulnerability of uncontrolled system resource applications in the setting moduleImpact: Successful exploitation of this vulnerability may affect availability.

6.6CVSS6.9AI score0.00007EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48904

Vulnerability that cards can call unauthorized APIs in the FRS processImpact: Successful exploitation of this vulnerability may affect availability.

6.2CVSS6.9AI score0.00007EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48906

Authentication bypass vulnerability in the DSoftBus moduleImpact: Successful exploitation of this vulnerability may affect availability.

8.8CVSS7AI score0.00025EPSS

CVE•added 2025/06/06 7:15 a.m.•35 views

CVE-2025-48909

Bypass vulnerability in the device management channelImpact: Successful exploitation of this vulnerability may affect service confidentiality.

7.1CVSS6.9AI score0.00019EPSS