Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-40047 | 0.00 | — | 0.01 | Mar 7, 2022 | There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity. | |||
| CVE-2021-40048 | 0.00 | — | 0.01 | Mar 7, 2022 | There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2021-40049 | 0.00 | — | 0.01 | Mar 7, 2022 | There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization. | |||
| CVE-2021-40050 | 0.00 | — | 0.01 | Mar 7, 2022 | There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this vulnerability may cause stack overflow. | |||
| CVE-2021-40051 | 0.00 | — | 0.01 | Mar 7, 2022 | There is an unauthorized access vulnerability in system components. Successful exploitation of this vulnerability will affect confidentiality. | |||
| CVE-2021-40052 | 0.00 | — | 0.01 | Mar 7, 2022 | There is an incorrect buffer size calculation vulnerability in the video framework.Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2021-40055 | 0.00 | — | 0.00 | Mar 7, 2022 | There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity. | |||
| CVE-2021-40061 | 0.00 | — | 0.01 | Mar 7, 2022 | There is a vulnerability of accessing resources using an incompatible type (type confusion) in the Bastet module. Successful exploitation of this vulnerability may affect integrity. | |||
| CVE-2021-40063 | 0.00 | — | 0.01 | Mar 7, 2022 | There is an improper access control vulnerability in the video module. Successful exploitation of this vulnerability may affect confidentiality. | |||
| CVE-2021-40064 | 0.00 | — | 0.01 | Mar 7, 2022 | There is a heap-based buffer overflow vulnerability in system components. Successful exploitation of this vulnerability may affect system stability. | |||
| CVE-2021-22429 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||
| CVE-2021-22432 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access. | |||
| CVE-2021-22430 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a logic bypass vulnerability in smartphones. Successful exploitation of this vulnerability may cause code injection. | |||
| CVE-2021-22426 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||
| CVE-2021-22431 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access. | |||
| CVE-2021-22433 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||
| CVE-2021-22434 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a memory address out of bounds vulnerability in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||
| CVE-2021-22395 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a code injection vulnerability in smartphones. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-22394 | 0.00 | — | 0.01 | Feb 25, 2022 | There is a buffer overflow vulnerability in smartphones. Successful exploitation of this vulnerability may cause DoS of the apps during Multi-Screen Collaboration. | |||
| CVE-2021-22319 | 0.00 | — | 0.01 | Feb 25, 2022 | There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause integer overflows. |
- CVE-2021-40047Mar 7, 2022risk 0.00cvss —epss 0.01
There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity.
- CVE-2021-40048Mar 7, 2022risk 0.00cvss —epss 0.01
There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability.
- CVE-2021-40049Mar 7, 2022risk 0.00cvss —epss 0.01
There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization.
- CVE-2021-40050Mar 7, 2022risk 0.00cvss —epss 0.01
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this vulnerability may cause stack overflow.
- CVE-2021-40051Mar 7, 2022risk 0.00cvss —epss 0.01
There is an unauthorized access vulnerability in system components. Successful exploitation of this vulnerability will affect confidentiality.
- CVE-2021-40052Mar 7, 2022risk 0.00cvss —epss 0.01
There is an incorrect buffer size calculation vulnerability in the video framework.Successful exploitation of this vulnerability may affect availability.
- CVE-2021-40055Mar 7, 2022risk 0.00cvss —epss 0.00
There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity.
- CVE-2021-40061Mar 7, 2022risk 0.00cvss —epss 0.01
There is a vulnerability of accessing resources using an incompatible type (type confusion) in the Bastet module. Successful exploitation of this vulnerability may affect integrity.
- CVE-2021-40063Mar 7, 2022risk 0.00cvss —epss 0.01
There is an improper access control vulnerability in the video module. Successful exploitation of this vulnerability may affect confidentiality.
- CVE-2021-40064Mar 7, 2022risk 0.00cvss —epss 0.01
There is a heap-based buffer overflow vulnerability in system components. Successful exploitation of this vulnerability may affect system stability.
- CVE-2021-22429Feb 25, 2022risk 0.00cvss —epss 0.01
There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.
- CVE-2021-22432Feb 25, 2022risk 0.00cvss —epss 0.01
There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.
- CVE-2021-22430Feb 25, 2022risk 0.00cvss —epss 0.01
There is a logic bypass vulnerability in smartphones. Successful exploitation of this vulnerability may cause code injection.
- CVE-2021-22426Feb 25, 2022risk 0.00cvss —epss 0.01
There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.
- CVE-2021-22431Feb 25, 2022risk 0.00cvss —epss 0.01
There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.
- CVE-2021-22433Feb 25, 2022risk 0.00cvss —epss 0.01
There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.
- CVE-2021-22434Feb 25, 2022risk 0.00cvss —epss 0.01
There is a memory address out of bounds vulnerability in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.
- CVE-2021-22395Feb 25, 2022risk 0.00cvss —epss 0.01
There is a code injection vulnerability in smartphones. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-22394Feb 25, 2022risk 0.00cvss —epss 0.01
There is a buffer overflow vulnerability in smartphones. Successful exploitation of this vulnerability may cause DoS of the apps during Multi-Screen Collaboration.
- CVE-2021-22319Feb 25, 2022risk 0.00cvss —epss 0.01
There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause integer overflows.
Page 44 of 54