Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-68967 | 0.00 | — | 0.00 | Jan 14, 2026 | Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68966 | 0.00 | — | 0.00 | Jan 14, 2026 | Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68965 | 0.00 | — | 0.00 | Jan 14, 2026 | Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68964 | 0.00 | — | 0.00 | Jan 14, 2026 | Data verification vulnerability in the HiView module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68969 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68968 | 0.00 | — | 0.00 | Jan 14, 2026 | Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this vulnerability may affect the input function. | |||
| CVE-2025-68962 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68961 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68960 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the video framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68958 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68957 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68956 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68955 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66330 | 0.00 | — | 0.00 | Dec 8, 2025 | App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-66325 | 0.00 | — | 0.00 | Dec 8, 2025 | Permission control vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58279 | 0.00 | — | 0.00 | Dec 8, 2025 | Permission control vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-66334 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66333 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66332 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66331 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. |
- CVE-2025-68967Jan 14, 2026risk 0.00cvss —epss 0.00
Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68966Jan 14, 2026risk 0.00cvss —epss 0.00
Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68965Jan 14, 2026risk 0.00cvss —epss 0.00
Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68964Jan 14, 2026risk 0.00cvss —epss 0.00
Data verification vulnerability in the HiView module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68969Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68968Jan 14, 2026risk 0.00cvss —epss 0.00
Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this vulnerability may affect the input function.
- CVE-2025-68962Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68961Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68960Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the video framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68958Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68957Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68956Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68955Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66330Dec 8, 2025risk 0.00cvss —epss 0.00
App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-66325Dec 8, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58279Dec 8, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-66334Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66333Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66332Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66331Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
Page 4 of 54