Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-58047 | 0.00 | — | 0.00 | Mar 4, 2025 | Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-58046 | 0.00 | — | 0.00 | Mar 4, 2025 | Permission management vulnerability in the lock screen module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-58045 | 0.00 | — | 0.00 | Mar 4, 2025 | Multi-concurrency vulnerability in the media digital copyright protection module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-27521 | 0.00 | — | 0.00 | Mar 4, 2025 | Vulnerability of improper access permission in the process management module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-58044 | 0.00 | — | 0.00 | Mar 4, 2025 | Permission verification bypass vulnerability in the notification module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-58043 | 0.00 | — | 0.00 | Mar 4, 2025 | Permission bypass vulnerability in the window module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-57962 | 0.00 | — | 0.00 | Feb 6, 2025 | Vulnerability of incomplete verification information in the VPN service module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-57961 | 0.00 | — | 0.00 | Feb 6, 2025 | Out-of-bounds write vulnerability in the emcom module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | |||
| CVE-2024-57960 | 0.00 | — | 0.00 | Feb 6, 2025 | Input verification vulnerability in the ExternalStorageProvider module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-57959 | 0.00 | — | 0.00 | Feb 6, 2025 | Use-After-Free (UAF) vulnerability in the display module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | |||
| CVE-2024-57958 | 0.00 | — | 0.00 | Feb 6, 2025 | Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | |||
| CVE-2024-12602 | 0.00 | — | 0.00 | Feb 6, 2025 | Identity verification vulnerability in the ParamWatcher module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-57957 | 0.00 | — | 0.00 | Feb 6, 2025 | Vulnerability of improper log information control in the UI framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-57956 | 0.00 | — | 0.00 | Feb 6, 2025 | Out-of-bounds read vulnerability in the interpreter string module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-57955 | 0.00 | — | 0.00 | Feb 6, 2025 | Arbitrary write vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-57954 | 0.00 | — | 0.00 | Feb 6, 2025 | Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-54121 | 0.00 | — | 0.00 | Jan 8, 2025 | Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | |||
| CVE-2024-56456 | 0.00 | — | 0.00 | Jan 8, 2025 | Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-56455 | 0.00 | — | 0.00 | Jan 8, 2025 | Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2024-56454 | 0.00 | — | 0.00 | Jan 8, 2025 | Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. |
- CVE-2024-58047Mar 4, 2025risk 0.00cvss —epss 0.00
Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-58046Mar 4, 2025risk 0.00cvss —epss 0.00
Permission management vulnerability in the lock screen module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-58045Mar 4, 2025risk 0.00cvss —epss 0.00
Multi-concurrency vulnerability in the media digital copyright protection module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-27521Mar 4, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper access permission in the process management module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-58044Mar 4, 2025risk 0.00cvss —epss 0.00
Permission verification bypass vulnerability in the notification module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-58043Mar 4, 2025risk 0.00cvss —epss 0.00
Permission bypass vulnerability in the window module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-57962Feb 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of incomplete verification information in the VPN service module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-57961Feb 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write vulnerability in the emcom module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.
- CVE-2024-57960Feb 6, 2025risk 0.00cvss —epss 0.00
Input verification vulnerability in the ExternalStorageProvider module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-57959Feb 6, 2025risk 0.00cvss —epss 0.00
Use-After-Free (UAF) vulnerability in the display module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.
- CVE-2024-57958Feb 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.
- CVE-2024-12602Feb 6, 2025risk 0.00cvss —epss 0.00
Identity verification vulnerability in the ParamWatcher module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-57957Feb 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper log information control in the UI framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-57956Feb 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read vulnerability in the interpreter string module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-57955Feb 6, 2025risk 0.00cvss —epss 0.00
Arbitrary write vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-57954Feb 6, 2025risk 0.00cvss —epss 0.00
Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-54121Jan 8, 2025risk 0.00cvss —epss 0.00
Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.
- CVE-2024-56456Jan 8, 2025risk 0.00cvss —epss 0.00
Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-56455Jan 8, 2025risk 0.00cvss —epss 0.00
Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2024-56454Jan 8, 2025risk 0.00cvss —epss 0.00
Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.
Page 26 of 54