Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
OpenatomOpenharmony

129 matches found

CVE
CVEadded 2024/02/02 7:15 a.m.36 views

CVE-2024-0285

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input.

5.5CVSS5.5AI score0.00025EPSS
CVE
CVEadded 2024/02/02 7:15 a.m.36 views

CVE-2024-21851

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause heap overflow through integer overflow.

7.8CVSS7.7AI score0.00032EPSS
CVE
CVEadded 2024/07/02 9:15 a.m.36 views

CVE-2024-37030

in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through use after free.

9.8CVSS8.5AI score0.01327EPSS
CVE
CVEadded 2024/07/02 9:15 a.m.36 views

CVE-2024-37077

in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.

9.8CVSS8.5AI score0.01133EPSS
CVE
CVEadded 2025/06/08 12:15 p.m.36 views

CVE-2025-24493

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through race condition.

5.5CVSS5.3AI score0.00014EPSS
CVE
CVEadded 2025/06/08 12:15 p.m.36 views

CVE-2025-27563

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.

5.5CVSS3.7AI score0.00014EPSS
CVE
CVEadded 2023/11/20 12:15 p.m.35 views

CVE-2023-46100

in OpenHarmony v3.2.2 and prior versions allow a local attacker get sensitive buffer information through use of uninitialized resource.

6.2CVSS5.6AI score0.00034EPSS
CVE
CVEadded 2023/09/21 10:15 a.m.35 views

CVE-2023-4753

OpenHarmony v3.2.1 and prior version has a system call function usage error. Local attackers can crash kernel by the error input.

5.5CVSS4.8AI score0.00024EPSS
CVE
CVEadded 2024/09/02 5:15 a.m.35 views

CVE-2024-39612

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.

5.5CVSS5.3AI score0.00038EPSS
CVE
CVEadded 2022/10/14 3:16 p.m.34 views

CVE-2022-41686

OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have an Out-of-bound memory read and write vulnerability in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could read out-of-bound memory leading sensiti...

5.1CVSS4.5AI score0.00037EPSS
CVE
CVEadded 2023/11/20 12:15 p.m.34 views

CVE-2023-3116

in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information or rewrite sensitive file through incorrect default permissions.

7.3CVSS6.8AI score0.00021EPSS
CVE
CVEadded 2024/02/02 7:15 a.m.34 views

CVE-2023-49118

in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through out-of-bounds Read.

5.5CVSS5.3AI score0.00032EPSS
CVE
CVEadded 2025/06/08 12:15 p.m.34 views

CVE-2025-27247

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.

5.5CVSS5.3AI score0.00015EPSS
CVE
CVEadded 2022/09/09 3:15 p.m.33 views

CVE-2022-38701

OpenHarmony-v3.1.2 and prior versions have a heap overflow vulnerability. Local attackers can trigger a heap overflow and get network sensitive information.

6.2CVSS4.5AI score0.00065EPSS
CVE
CVEadded 2023/01/09 3:15 a.m.33 views

CVE-2023-0036

platform_callback_stub in misc subsystem within OpenHarmony-v3.0.5 and prior versions has an authentication bypass vulnerability which allows an "SA relay attack".Local attackers can bypass authentication and attack other SAs with high privilege.

7.8CVSS7.1AI score0.00008EPSS
CVE
CVEadded 2024/01/02 8:15 a.m.33 views

CVE-2023-49135

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer.

5.5CVSS5.5AI score0.00048EPSS
CVE
CVEadded 2023/11/20 12:15 p.m.33 views

CVE-2023-6045

in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through type confusion.

7.8CVSS6.7AI score0.00026EPSS
CVE
CVEadded 2024/02/02 7:15 a.m.33 views

CVE-2024-21860

in OpenHarmony v4.0.0 and prior versions allow an adjacent attacker arbitrary code execution in any apps through use after free.

8.8CVSS8.9AI score0.00044EPSS
CVE
CVEadded 2025/06/08 12:15 p.m.33 views

CVE-2025-27131

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through improper input.

6.1CVSS6.2AI score0.00025EPSS
CVE
CVEadded 2022/09/09 3:15 p.m.32 views

CVE-2022-36423

OpenHarmony-v3.1.2 and prior versions have an incorrect configuration of the cJSON library, which leads a Stack overflow vulnerability during recursive parsing. LAN attackers can lead a DoS attack to all network devices.

7.4CVSS7.5AI score0.00105EPSS
CVE
CVEadded 2023/11/20 12:15 p.m.32 views

CVE-2023-42774

in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information through incorrect default permissions.

6.2CVSS5.5AI score0.00024EPSS
CVE
CVEadded 2024/02/02 7:15 a.m.32 views

CVE-2024-21863

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input.

6.2CVSS6.2AI score0.00024EPSS
CVE
CVEadded 2024/02/02 7:15 a.m.31 views

CVE-2023-43756

in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through out-of-bounds Read.

5.5CVSS5.3AI score0.00032EPSS
CVE
CVEadded 2024/01/02 8:15 a.m.31 views

CVE-2023-48360

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer.

5.5CVSS5.5AI score0.00057EPSS
CVE
CVEadded 2024/01/02 8:15 a.m.31 views

CVE-2023-49142

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia audio crash through modify a released pointer.

4CVSS4.2AI score0.00055EPSS
CVE
CVEadded 2023/01/09 3:15 a.m.30 views

CVE-2022-45126

Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGettime. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked.

7.8CVSS5.8AI score0.0003EPSS
CVE
CVEadded 2024/02/02 7:15 a.m.29 views

CVE-2023-45734

in OpenHarmony v3.2.4 and prior versions allow an adjacent attacker arbitrary code execution through out-of-bounds write.

8.8CVSS8.9AI score0.00036EPSS
CVE
CVEadded 2024/01/02 8:15 a.m.27 views

CVE-2023-47216

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through occupy all resources

5.5CVSS5.4AI score0.00049EPSS
CVE
CVEadded 2024/01/02 8:15 a.m.27 views

CVE-2023-47857

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia camera crash through modify a released pointer.

5.5CVSS5.5AI score0.00057EPSS
Total number of security vulnerabilities129