Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-58252 | 0.00 | — | 0.00 | May 6, 2025 | Vulnerability of insufficient information protection in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-46587 | 0.00 | — | 0.00 | May 6, 2025 | Permission control vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-46586 | 0.00 | — | 0.00 | May 6, 2025 | Permission control vulnerability in the contacts module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-46585 | 0.00 | — | 0.00 | May 6, 2025 | Out-of-bounds array read/write vulnerability in the kernel module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-46584 | 0.00 | — | 0.00 | May 6, 2025 | Vulnerability of improper authentication logic implementation in the file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-31175 | 0.00 | — | 0.00 | Apr 7, 2025 | Deserialization mismatch vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2025-31174 | 0.00 | — | 0.00 | Apr 7, 2025 | Path traversal vulnerability in the DFS module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-31173 | 0.00 | — | 0.00 | Apr 7, 2025 | Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-31172 | 0.00 | — | 0.00 | Apr 7, 2025 | Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-31171 | 0.00 | — | 0.00 | Apr 7, 2025 | File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-31170 | 0.00 | — | 0.00 | Apr 7, 2025 | Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. | |||
| CVE-2024-58127 | 0.00 | — | 0.00 | Apr 7, 2025 | Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. | |||
| CVE-2024-58126 | 0.00 | — | 0.00 | Apr 7, 2025 | Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. | |||
| CVE-2024-58125 | 0.00 | — | 0.00 | Apr 7, 2025 | Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. | |||
| CVE-2024-58124 | 0.00 | — | 0.00 | Apr 7, 2025 | Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. | |||
| CVE-2024-58116 | 0.00 | — | 0.00 | Apr 7, 2025 | Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-58115 | 0.00 | — | 0.00 | Apr 7, 2025 | Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-58113 | 0.00 | — | 0.00 | Apr 7, 2025 | Vulnerability of improper resource management in the memory management module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-58112 | 0.00 | — | 0.00 | Apr 7, 2025 | Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-58111 | 0.00 | — | 0.00 | Apr 7, 2025 | Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. |
- CVE-2024-58252May 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of insufficient information protection in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-46587May 6, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-46586May 6, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the contacts module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-46585May 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds array read/write vulnerability in the kernel module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-46584May 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper authentication logic implementation in the file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-31175Apr 7, 2025risk 0.00cvss —epss 0.00
Deserialization mismatch vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect service integrity.
- CVE-2025-31174Apr 7, 2025risk 0.00cvss —epss 0.00
Path traversal vulnerability in the DFS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-31173Apr 7, 2025risk 0.00cvss —epss 0.00
Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-31172Apr 7, 2025risk 0.00cvss —epss 0.00
Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-31171Apr 7, 2025risk 0.00cvss —epss 0.00
File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-31170Apr 7, 2025risk 0.00cvss —epss 0.00
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
- CVE-2024-58127Apr 7, 2025risk 0.00cvss —epss 0.00
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
- CVE-2024-58126Apr 7, 2025risk 0.00cvss —epss 0.00
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
- CVE-2024-58125Apr 7, 2025risk 0.00cvss —epss 0.00
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
- CVE-2024-58124Apr 7, 2025risk 0.00cvss —epss 0.00
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
- CVE-2024-58116Apr 7, 2025risk 0.00cvss —epss 0.00
Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-58115Apr 7, 2025risk 0.00cvss —epss 0.00
Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-58113Apr 7, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper resource management in the memory management module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-58112Apr 7, 2025risk 0.00cvss —epss 0.00
Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-58111Apr 7, 2025risk 0.00cvss —epss 0.00
Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.
Page 12 of 54