Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-34865 | Cri | 0.59 | 9.1 | 0.00 | Apr 13, 2026 | Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | ||
| CVE-2026-34853 | Hig | 0.50 | 7.7 | 0.00 | Apr 13, 2026 | Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34856 | Hig | 0.47 | 7.3 | 0.00 | Apr 13, 2026 | UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-28553 | Med | 0.45 | 6.9 | 0.00 | Apr 13, 2026 | Vulnerability of improper permission control in the theme setting module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | ||
| CVE-2026-34864 | Med | 0.44 | 6.8 | 0.00 | Apr 13, 2026 | Boundary-unlimited vulnerability in the application read module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34863 | Med | 0.44 | 6.7 | 0.00 | Apr 13, 2026 | Out-of-bounds write vulnerability in the file system. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34862 | Med | 0.41 | 6.3 | 0.00 | Apr 13, 2026 | Race condition vulnerability in the power consumption statistics module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34861 | Med | 0.41 | 6.3 | 0.00 | Apr 13, 2026 | Race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34852 | Med | 0.40 | 6.1 | 0.00 | Apr 13, 2026 | Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34859 | Med | 0.38 | 5.9 | 0.00 | Apr 13, 2026 | UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | ||
| CVE-2026-34855 | Med | 0.37 | 5.7 | 0.00 | Apr 13, 2026 | Out-of-bounds write vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | ||
| CVE-2026-34854 | Med | 0.37 | 5.7 | 0.00 | Apr 13, 2026 | UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | ||
| CVE-2026-34867 | Med | 0.36 | 5.6 | 0.00 | Apr 13, 2026 | Double free vulnerability in the multi-mode input system. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34866 | Med | 0.33 | 5.1 | 0.00 | Apr 13, 2026 | Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | ||
| CVE-2026-34857 | Med | 0.31 | 4.7 | 0.00 | Apr 13, 2026 | UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34858 | Med | 0.27 | 4.1 | 0.00 | Apr 13, 2026 | UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34860 | Med | 0.27 | 4.1 | 0.00 | Apr 13, 2026 | Access control vulnerability in the memo module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | ||
| CVE-2025-66329 | Med | 0.26 | 4.0 | 0.00 | Dec 8, 2025 | Permission control vulnerability in the window management module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34849 | Low | 0.16 | 2.5 | 0.00 | Apr 13, 2026 | UAF vulnerability in the screen management module. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-34851 | Low | 0.14 | 2.2 | 0.00 | Apr 13, 2026 | Race condition vulnerability in the event notification module. Impact: Successful exploitation of this vulnerability may affect availability. |
- risk 0.59cvss 9.1epss 0.00
Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- risk 0.50cvss 7.7epss 0.00
Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.47cvss 7.3epss 0.00
UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.45cvss 6.9epss 0.00
Vulnerability of improper permission control in the theme setting module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- risk 0.44cvss 6.8epss 0.00
Boundary-unlimited vulnerability in the application read module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds write vulnerability in the file system. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.41cvss 6.3epss 0.00
Race condition vulnerability in the power consumption statistics module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.41cvss 6.3epss 0.00
Race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.40cvss 6.1epss 0.00
Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.38cvss 5.9epss 0.00
UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- risk 0.37cvss 5.7epss 0.00
Out-of-bounds write vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- risk 0.37cvss 5.7epss 0.00
UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- risk 0.36cvss 5.6epss 0.00
Double free vulnerability in the multi-mode input system. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.33cvss 5.1epss 0.00
Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- risk 0.31cvss 4.7epss 0.00
UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.27cvss 4.1epss 0.00
UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.27cvss 4.1epss 0.00
Access control vulnerability in the memo module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- risk 0.26cvss 4.0epss 0.00
Permission control vulnerability in the window management module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.16cvss 2.5epss 0.00
UAF vulnerability in the screen management module. Impact: Successful exploitation of this vulnerability may affect availability.
- risk 0.14cvss 2.2epss 0.00
Race condition vulnerability in the event notification module. Impact: Successful exploitation of this vulnerability may affect availability.
Page 1 of 54