VYPR

Harmonyos

by Huawei

CVEs (1,067)

  • CVE-2022-41596Dec 20, 2022
    risk 0.00cvss epss 0.00

    The system tool has inconsistent serialization and deserialization. Successful exploitation of this vulnerability will cause unauthorized startup of components.

  • CVE-2021-46856Dec 20, 2022
    risk 0.00cvss epss 0.01

    The multi-screen collaboration module has a path traversal vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2022-46320Dec 20, 2022
    risk 0.00cvss epss 0.00

    The kernel module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may cause memory overwriting.

  • CVE-2022-46321Dec 20, 2022
    risk 0.00cvss epss 0.00

    The Wi-Fi module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2022-46314Dec 20, 2022
    risk 0.00cvss epss 0.00

    The IPC module has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.

  • CVE-2022-44550Nov 9, 2022
    risk 0.00cvss epss 0.00

    The graphics display module has a UAF vulnerability when traversing graphic layers. Successful exploitation of this vulnerability may affect system availability.

  • CVE-2022-44552Nov 9, 2022
    risk 0.00cvss epss 0.00

    The lock screen module has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.

  • CVE-2022-44554Nov 9, 2022
    risk 0.00cvss epss 0.00

    The power module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause abnormal status of a module on the device.

  • CVE-2021-46851Nov 9, 2022
    risk 0.00cvss epss 0.00

    The DRM module has a vulnerability in verifying the secure memory attributes. Successful exploitation of this vulnerability may cause abnormal video playback.

  • CVE-2022-44558Nov 9, 2022
    risk 0.00cvss epss 0.01

    The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

  • CVE-2022-44560Nov 9, 2022
    risk 0.00cvss epss 0.00

    The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.

  • CVE-2022-44557Nov 9, 2022
    risk 0.00cvss epss 0.00

    The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2022-44548Nov 9, 2022
    risk 0.00cvss epss 0.00

    There is a vulnerability in permission verification during the Bluetooth pairing process. Successful exploitation of this vulnerability may cause the dialog box for confirming the pairing not to be displayed during Bluetooth pairing.

  • CVE-2022-44553Nov 9, 2022
    risk 0.00cvss epss 0.00

    The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider. Successful exploitation of this vulnerability may cause third-party apps to start periodically.

  • CVE-2022-44562Nov 9, 2022
    risk 0.00cvss epss 0.01

    The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

  • CVE-2022-44549Nov 9, 2022
    risk 0.00cvss epss 0.00

    The LBS module has a vulnerability in geofencing API access. Successful exploitation of this vulnerability may cause third-party apps to access the geofencing APIs without authorization, affecting user confidentiality.

  • CVE-2022-44559Nov 9, 2022
    risk 0.00cvss epss 0.01

    The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

  • CVE-2022-44546Nov 9, 2022
    risk 0.00cvss epss 0.00

    The kernel module has the vulnerability that the mapping is not cleared after the memory is automatically released. Successful exploitation of this vulnerability may cause a system restart.

  • CVE-2022-44551Nov 9, 2022
    risk 0.00cvss epss 0.00

    The iaware module has a vulnerability in thread security. Successful exploitation of this vulnerability will affect confidentiality, integrity, and availability.

  • CVE-2022-44547Nov 9, 2022
    risk 0.00cvss epss 0.00

    The Display Service module has a UAF vulnerability. Successful exploitation of this vulnerability may affect the display service availability.

Page 37 of 54