VYPR

Harmonyos

by Huawei

CVEs (1,067)

  • CVE-2022-39000Sep 16, 2022
    risk 0.00cvss epss 0.01

    The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup.

  • CVE-2021-46836Sep 16, 2022
    risk 0.00cvss epss 0.00

    Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2021-40024Sep 16, 2022
    risk 0.00cvss epss 0.00

    Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2022-39008Sep 16, 2022
    risk 0.00cvss epss 0.01

    The NFC module has bundle serialization/deserialization vulnerabilities. Successful exploitation of this vulnerability may cause third-party apps to read and write files that are accessible only to system apps.

  • CVE-2021-40017Sep 16, 2022
    risk 0.00cvss epss 0.01

    The HW_KEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access.

  • CVE-2021-40040Aug 9, 2022
    risk 0.00cvss epss 0.00

    Vulnerability of writing data to an arbitrary address in the HW_KEYMASTER module. Successful exploitation of this vulnerability may affect confidentiality.

  • CVE-2021-40030Aug 9, 2022
    risk 0.00cvss epss 0.00

    The My HUAWEI app has a defect in the design. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2022-37005Aug 9, 2022
    risk 0.00cvss epss 0.00

    The Settings application has an argument injection vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2022-37003Aug 9, 2022
    risk 0.00cvss epss 0.00

    The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files.

  • CVE-2022-37004Aug 9, 2022
    risk 0.00cvss epss 0.01

    The Settings application has a vulnerability of bypassing the out-of-box experience (OOBE). Successful exploitation of this vulnerability may affect the availability.

  • CVE-2022-37002Aug 9, 2022
    risk 0.00cvss epss 0.00

    The SystemUI module has a privilege escalation vulnerability. Successful exploitation of this vulnerability can cause malicious applications to pop up windows or run in the background.

  • CVE-2022-37008Aug 9, 2022
    risk 0.00cvss epss 0.00

    The recovery module has a vulnerability of bypassing the verification of an update package before use. Successful exploitation of this vulnerability may affect system stability.

  • CVE-2022-37001Aug 9, 2022
    risk 0.00cvss epss 0.00

    The diag-router module has a vulnerability in intercepting excessive long and short instructions. Successful exploitation of this vulnerability will cause the diag-router module to crash.

  • CVE-2022-37007Aug 9, 2022
    risk 0.00cvss epss 0.01

    The chinadrm module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect the availability.

  • CVE-2021-40034Aug 9, 2022
    risk 0.00cvss epss 0.01

    The video framework has the memory overwriting vulnerability caused by addition overflow. Successful exploitation of this vulnerability may affect the availability.

  • CVE-2021-40012Jul 11, 2022
    risk 0.00cvss epss 0.01

    Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality.

  • CVE-2022-34738Jul 11, 2022
    risk 0.00cvss epss 0.00

    The SystemUI module has a vulnerability in permission control. If this vulnerability is successfully exploited, users are unaware of the service running in the background.

  • CVE-2022-34737Jul 11, 2022
    risk 0.00cvss epss 0.01

    The application security module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may affect data integrity and confidentiality.

  • CVE-2022-34742Jul 11, 2022
    risk 0.00cvss epss 0.01

    The system module has a read/write vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

  • CVE-2022-34739Jul 11, 2022
    risk 0.00cvss epss 0.01

    The fingerprint module has a vulnerability of overflow in arithmetic addition. Successful exploitation of this vulnerability may result in the acquisition of data from unknown addresses in address mappings.

Page 41 of 54