Openharmony@4.1.0 Security Vulnerabilities and Issues — Openharmony@4.1.0 CVE List

Lucene search

OpenatomOpenharmony4.1.0

29 matches found

CVE•added 2025/02/07 10:15 a.m.•60 views

CVE-2025-0304

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.

8.8CVSS6.3AI score0.00031EPSS

CVE•added 2025/03/04 4:15 a.m.•54 views

CVE-2025-21089

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.

5.5CVSS6.8AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•53 views

CVE-2025-22841

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.

5.5CVSS6.8AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•53 views

CVE-2025-24309

in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.

7.8CVSS7.5AI score0.00021EPSS

CVE•added 2025/03/04 4:15 a.m.•51 views

CVE-2025-21097

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through NULL pointer dereference.

5.5CVSS6.8AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•51 views

CVE-2025-22897

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through buffer overflow.

5.5CVSS7AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•51 views

CVE-2025-23409

in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.

7.8CVSS7.5AI score0.00024EPSS

CVE•added 2024/10/08 4:15 a.m.•50 views

CVE-2024-43697

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through improper input.

5.5CVSS4.1AI score0.00033EPSS

CVE•added 2025/03/04 4:15 a.m.•50 views

CVE-2025-20091

7.8CVSS7.5AI score0.00017EPSS

CVE•added 2025/03/04 4:15 a.m.•50 views

CVE-2025-20626

7.8CVSS7.5AI score0.00017EPSS

CVE•added 2025/03/04 4:15 a.m.•50 views

CVE-2025-21084

in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through through NULL pointer dereference.. This vulnerability can be exploited only in restricted scenarios.

7.8CVSS7.5AI score0.00021EPSS

CVE•added 2025/03/04 4:15 a.m.•50 views

CVE-2025-22443

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.

5.5CVSS6.8AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•50 views

CVE-2025-22847

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.

5.5CVSS6.8AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•50 views

CVE-2025-23414

7.8CVSS7.7AI score0.00024EPSS

CVE•added 2025/03/04 4:15 a.m.•50 views

CVE-2025-24301

7.8CVSS7.5AI score0.00024EPSS

CVE•added 2025/03/04 4:15 a.m.•49 views

CVE-2025-23234

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through buffer overflow.

5.5CVSS7AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•49 views

CVE-2025-23240

7.8CVSS7.5AI score0.00021EPSS

CVE•added 2025/03/04 4:15 a.m.•49 views

CVE-2025-23418

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.

5.5CVSS6.8AI score0.0002EPSS

CVE•added 2025/03/04 4:15 a.m.•48 views

CVE-2025-22835

7.8CVSS7.5AI score0.00021EPSS

CVE•added 2025/03/04 4:15 a.m.•48 views

CVE-2025-22837

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through NULL pointer dereference.

5.5CVSS6.8AI score0.0002EPSS

CVE•added 2024/10/08 4:15 a.m.•46 views

CVE-2024-39831

in OpenHarmony v4.1.0 allow a local attacker with high privileges arbitrary code execution in pre-installed apps through use after free.

6.7CVSS5.5AI score0.0004EPSS

CVE•added 2025/03/04 4:15 a.m.•46 views

CVE-2025-21098

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read bypass permission check.

5.5CVSS6.5AI score0.00019EPSS

CVE•added 2025/03/04 4:15 a.m.•44 views

CVE-2025-23420

7.8CVSS7.5AI score0.00021EPSS

CVE•added 2024/10/08 4:15 a.m.•43 views

CVE-2024-39806

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.

5.5CVSS5.3AI score0.00035EPSS

CVE•added 2024/09/02 5:15 a.m.•43 views

CVE-2024-41160

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.

8.8CVSS7.9AI score0.00041EPSS

CVE•added 2025/02/07 10:15 a.m.•42 views

CVE-2025-0303

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through buffer overflow.

8.8CVSS6.5AI score0.00028EPSS

CVE•added 2024/10/08 4:15 a.m.•40 views

CVE-2024-43696

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS by memory leak.

5.5CVSS4.1AI score0.00033EPSS

CVE•added 2024/10/08 4:15 a.m.•40 views

CVE-2024-45382

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through out-of-bounds write.

5.5CVSS4.1AI score0.00033EPSS

CVE•added 2025/02/07 10:15 a.m.•40 views

CVE-2025-0302

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow.

5.5CVSS6.8AI score0.00022EPSS