Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-34850 | Low | 0.12 | 1.9 | 0.00 | Apr 13, 2026 | Race condition vulnerability in the notification service. Impact: Successful exploitation of this vulnerability may affect availability. | ||
| CVE-2026-28542 | 0.00 | — | 0.00 | Mar 5, 2026 | Permission bypass vulnerability in the system service framework. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28548 | 0.00 | — | 0.00 | Mar 5, 2026 | Vulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2026-28551 | 0.00 | — | 0.00 | Mar 5, 2026 | Race condition vulnerability in the device security management module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28549 | 0.00 | — | 0.00 | Mar 5, 2026 | Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28547 | 0.00 | — | 0.00 | Mar 5, 2026 | Vulnerability of uninitialized pointer access in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28546 | 0.00 | — | 0.00 | Mar 5, 2026 | Buffer overflow vulnerability in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28543 | 0.00 | — | 0.00 | Mar 5, 2026 | Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28541 | 0.00 | — | 0.00 | Mar 5, 2026 | Permission control vulnerability in the cellular_data module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28540 | 0.00 | — | 0.00 | Mar 5, 2026 | Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2026-28539 | 0.00 | — | 0.00 | Mar 5, 2026 | Data processing vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2026-28538 | 0.00 | — | 0.00 | Mar 5, 2026 | Path traversal vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66319 | 0.00 | — | 0.00 | Mar 5, 2026 | Permission control vulnerability in the resource scheduling module. Impact: Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2026-28552 | 0.00 | — | 0.00 | Mar 5, 2026 | Out-of-bounds write vulnerability in the IMS module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28550 | 0.00 | — | 0.00 | Mar 5, 2026 | Race condition vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28545 | 0.00 | — | 0.00 | Mar 5, 2026 | Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28544 | 0.00 | — | 0.00 | Mar 5, 2026 | Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28537 | 0.00 | — | 0.00 | Mar 5, 2026 | Double free vulnerability in the window module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-28536 | 0.00 | — | 0.00 | Mar 5, 2026 | Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. | |||
| CVE-2026-24928 | 0.00 | — | 0.00 | Feb 6, 2026 | Out-of-bounds write vulnerability in the file system module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
- risk 0.12cvss 1.9epss 0.00
Race condition vulnerability in the notification service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28542Mar 5, 2026risk 0.00cvss —epss 0.00
Permission bypass vulnerability in the system service framework. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28548Mar 5, 2026risk 0.00cvss —epss 0.00
Vulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2026-28551Mar 5, 2026risk 0.00cvss —epss 0.00
Race condition vulnerability in the device security management module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28549Mar 5, 2026risk 0.00cvss —epss 0.00
Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28547Mar 5, 2026risk 0.00cvss —epss 0.00
Vulnerability of uninitialized pointer access in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28546Mar 5, 2026risk 0.00cvss —epss 0.00
Buffer overflow vulnerability in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28543Mar 5, 2026risk 0.00cvss —epss 0.00
Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28541Mar 5, 2026risk 0.00cvss —epss 0.00
Permission control vulnerability in the cellular_data module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28540Mar 5, 2026risk 0.00cvss —epss 0.00
Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2026-28539Mar 5, 2026risk 0.00cvss —epss 0.00
Data processing vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2026-28538Mar 5, 2026risk 0.00cvss —epss 0.00
Path traversal vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66319Mar 5, 2026risk 0.00cvss —epss 0.00
Permission control vulnerability in the resource scheduling module. Impact: Successful exploitation of this vulnerability may affect service integrity.
- CVE-2026-28552Mar 5, 2026risk 0.00cvss —epss 0.00
Out-of-bounds write vulnerability in the IMS module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28550Mar 5, 2026risk 0.00cvss —epss 0.00
Race condition vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28545Mar 5, 2026risk 0.00cvss —epss 0.00
Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28544Mar 5, 2026risk 0.00cvss —epss 0.00
Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28537Mar 5, 2026risk 0.00cvss —epss 0.00
Double free vulnerability in the window module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2026-28536Mar 5, 2026risk 0.00cvss —epss 0.00
Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
- CVE-2026-24928Feb 6, 2026risk 0.00cvss —epss 0.00
Out-of-bounds write vulnerability in the file system module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
Page 2 of 54