Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-52103 | 0.00 | — | 0.00 | Jan 16, 2024 | Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read. | |||
| CVE-2023-52102 | 0.00 | — | 0.00 | Jan 16, 2024 | Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52101 | 0.00 | — | 0.00 | Jan 16, 2024 | Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availability and integrity. | |||
| CVE-2023-52100 | 0.00 | — | 0.00 | Jan 16, 2024 | The Celia Keyboard module has a vulnerability in access control. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2023-52099 | 0.00 | — | 0.00 | Jan 16, 2024 | Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52098 | 0.00 | — | 0.00 | Jan 16, 2024 | Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2023-52108 | 0.00 | — | 0.00 | Jan 16, 2024 | Vulnerability of process priorities being raised in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2023-52107 | 0.00 | — | 0.00 | Jan 16, 2024 | Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52116 | 0.00 | — | 0.00 | Jan 16, 2024 | Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device. | |||
| CVE-2023-52115 | 0.00 | — | 0.00 | Jan 16, 2024 | The iaware module has a Use-After-Free (UAF) vulnerability. Successful exploitation of this vulnerability may affect the system functions. | |||
| CVE-2023-52114 | 0.00 | — | 0.00 | Jan 16, 2024 | Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2023-44112 | 0.00 | — | 0.00 | Jan 16, 2024 | Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiality. | |||
| CVE-2023-52113 | 0.00 | — | 0.00 | Jan 16, 2024 | launchAnyWhere vulnerability in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2023-52112 | 0.00 | — | 0.00 | Jan 16, 2024 | Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation of this vulnerability may cause features to perform abnormally. | |||
| CVE-2023-52111 | 0.00 | — | 0.00 | Jan 16, 2024 | Authorization vulnerability in the BootLoader module. Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2023-52110 | 0.00 | — | 0.00 | Jan 16, 2024 | The sensor module has an out-of-bounds access vulnerability.Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2023-52109 | 0.00 | — | 0.00 | Jan 16, 2024 | Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-44117 | 0.00 | — | 0.00 | Jan 16, 2024 | Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-4566 | 0.00 | — | 0.00 | Jan 16, 2024 | Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-6273 | 0.00 | — | 0.00 | Dec 6, 2023 | Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally. |
- CVE-2023-52103Jan 16, 2024risk 0.00cvss —epss 0.00
Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read.
- CVE-2023-52102Jan 16, 2024risk 0.00cvss —epss 0.00
Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52101Jan 16, 2024risk 0.00cvss —epss 0.00
Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availability and integrity.
- CVE-2023-52100Jan 16, 2024risk 0.00cvss —epss 0.00
The Celia Keyboard module has a vulnerability in access control. Successful exploitation of this vulnerability may affect availability.
- CVE-2023-52099Jan 16, 2024risk 0.00cvss —epss 0.00
Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52098Jan 16, 2024risk 0.00cvss —epss 0.00
Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.
- CVE-2023-52108Jan 16, 2024risk 0.00cvss —epss 0.00
Vulnerability of process priorities being raised in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.
- CVE-2023-52107Jan 16, 2024risk 0.00cvss —epss 0.00
Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52116Jan 16, 2024risk 0.00cvss —epss 0.00
Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.
- CVE-2023-52115Jan 16, 2024risk 0.00cvss —epss 0.00
The iaware module has a Use-After-Free (UAF) vulnerability. Successful exploitation of this vulnerability may affect the system functions.
- CVE-2023-52114Jan 16, 2024risk 0.00cvss —epss 0.00
Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.
- CVE-2023-44112Jan 16, 2024risk 0.00cvss —epss 0.00
Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiality.
- CVE-2023-52113Jan 16, 2024risk 0.00cvss —epss 0.00
launchAnyWhere vulnerability in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.
- CVE-2023-52112Jan 16, 2024risk 0.00cvss —epss 0.00
Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation of this vulnerability may cause features to perform abnormally.
- CVE-2023-52111Jan 16, 2024risk 0.00cvss —epss 0.00
Authorization vulnerability in the BootLoader module. Successful exploitation of this vulnerability may affect service integrity.
- CVE-2023-52110Jan 16, 2024risk 0.00cvss —epss 0.00
The sensor module has an out-of-bounds access vulnerability.Successful exploitation of this vulnerability may affect availability.
- CVE-2023-52109Jan 16, 2024risk 0.00cvss —epss 0.00
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-44117Jan 16, 2024risk 0.00cvss —epss 0.00
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-4566Jan 16, 2024risk 0.00cvss —epss 0.00
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-6273Dec 6, 2023risk 0.00cvss —epss 0.00
Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.
Page 24 of 54