Openharmony Security Vulnerabilities and Issues — Openharmony CVE List

Lucene search

OpenatomOpenharmony

16 matches found

CVE•added 2025/02/07 10:15 a.m.•59 views

CVE-2025-0304

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.

8.8CVSS6.3AI score0.00027EPSS

CVE•added 2024/12/03 1:15 p.m.•51 views

CVE-2024-10074

in OpenHarmony v4.1.1 and prior versions allow a local attacker cause the common permission is upgraded to root through use after free.

8.8CVSS8.4AI score0.00031EPSS

CVE•added 2024/04/02 7:15 a.m.•51 views

CVE-2024-22098

in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through use after free.

8.8CVSS6.8AI score0.00097EPSS

CVE•added 2024/11/05 8:15 a.m.•45 views

CVE-2024-47797

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through out-of-bounds write.

8.4CVSS7.7AI score0.0003EPSS

CVE•added 2024/04/02 7:15 a.m.•44 views

CVE-2024-29074

in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through improper input.

8.8CVSS6.8AI score0.00073EPSS

CVE•added 2024/04/02 7:15 a.m.•43 views

CVE-2024-28226

in OpenHarmony v4.0.0 and prior versions allow a remote attacker cause DOS through improper input.

8.1CVSS8.1AI score0.01729EPSS

CVE•added 2024/09/02 5:15 a.m.•43 views

CVE-2024-41157

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.

8.8CVSS7.9AI score0.00039EPSS

CVE•added 2024/09/02 5:15 a.m.•42 views

CVE-2024-39816

in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write.

8.4CVSS8.2AI score0.00037EPSS

CVE•added 2024/11/05 8:15 a.m.•42 views

CVE-2024-47404

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through double free.

8.4CVSS7.7AI score0.0003EPSS

CVE•added 2024/09/02 5:15 a.m.•41 views

CVE-2024-41160

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.

8.8CVSS7.9AI score0.00041EPSS

CVE•added 2025/02/07 10:15 a.m.•41 views

CVE-2025-0303

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through buffer overflow.

8.8CVSS6.5AI score0.00025EPSS

CVE•added 2024/11/05 8:15 a.m.•40 views

CVE-2024-47137

in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through out-of-bounds write.

8.4CVSS7.7AI score0.0003EPSS

CVE•added 2024/09/02 5:15 a.m.•39 views

CVE-2024-38386

in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write.

8.4CVSS8.2AI score0.00037EPSS

CVE•added 2023/11/20 12:15 p.m.•37 views

CVE-2023-43612

in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary file read and write through improper preservation of permissions.

8.4CVSS7.8AI score0.00022EPSS

CVE•added 2024/02/02 7:15 a.m.•33 views

CVE-2024-21860

in OpenHarmony v4.0.0 and prior versions allow an adjacent attacker arbitrary code execution in any apps through use after free.

8.8CVSS8.9AI score0.00044EPSS

CVE•added 2024/02/02 7:15 a.m.•29 views

CVE-2023-45734

in OpenHarmony v3.2.4 and prior versions allow an adjacent attacker arbitrary code execution through out-of-bounds write.

8.8CVSS8.9AI score0.00036EPSS