Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-40031 | 0.00 | — | 0.01 | Jan 7, 2022 | There is a Null pointer dereference vulnerability in the camera module in smartphones. Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2021-40026 | 0.00 | — | 0.01 | Jan 7, 2022 | There is a Heap-based buffer overflow vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2021-40029 | 0.00 | — | 0.01 | Jan 7, 2022 | There is a Buffer overflow vulnerability due to a boundary error with the Samba server in the file management module in smartphones. Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2021-40009 | 0.00 | — | 0.01 | Jan 7, 2022 | There is an Out-of-bounds write vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2021-40005 | 0.00 | — | 0.01 | Jan 7, 2022 | The distributed data service component has a vulnerability in data access control. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2021-40006 | 0.00 | — | 0.00 | Jan 7, 2022 | Vulnerability of design defects in the security algorithm component. Successful exploitation of this vulnerability may affect confidentiality. | |||
| CVE-2021-40004 | 0.00 | — | 0.01 | Jan 7, 2022 | The cellular module has a vulnerability in permission management. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2021-40003 | 0.00 | — | 0.01 | Jan 7, 2022 | HwPCAssistant has a path traversal vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2021-40002 | 0.00 | — | 0.00 | Jan 7, 2022 | The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end. | |||
| CVE-2021-40001 | 0.00 | — | 0.01 | Jan 7, 2022 | The CaasKit module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the MeeTime application to be unavailable. | |||
| CVE-2021-40000 | 0.00 | — | 0.00 | Jan 7, 2022 | The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end. | |||
| CVE-2021-39974 | 0.00 | — | 0.01 | Jan 3, 2022 | There is an Out-of-bounds read in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-39973 | 0.00 | — | 0.01 | Jan 3, 2022 | There is a Null pointer dereference in Smartphones.Successful exploitation of this vulnerability may cause the kernel to break down. | |||
| CVE-2021-39969 | 0.00 | — | 0.01 | Jan 3, 2022 | There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-39966 | 0.00 | — | 0.01 | Jan 3, 2022 | There is an Uninitialized AOD driver structure in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-39967 | 0.00 | — | 0.01 | Jan 3, 2022 | There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast permission settings in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-37133 | 0.00 | — | 0.01 | Jan 3, 2022 | There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-39990 | 0.00 | — | 0.01 | Jan 3, 2022 | The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of this vulnerability may affect user experience. | |||
| CVE-2021-39988 | 0.00 | — | 0.01 | Jan 3, 2022 | The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart. | |||
| CVE-2021-39989 | 0.00 | — | 0.01 | Jan 3, 2022 | The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability may cause a process to restart. |
- CVE-2021-40031Jan 7, 2022risk 0.00cvss —epss 0.01
There is a Null pointer dereference vulnerability in the camera module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
- CVE-2021-40026Jan 7, 2022risk 0.00cvss —epss 0.01
There is a Heap-based buffer overflow vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
- CVE-2021-40029Jan 7, 2022risk 0.00cvss —epss 0.01
There is a Buffer overflow vulnerability due to a boundary error with the Samba server in the file management module in smartphones. Successful exploitation of this vulnerability may affect function stability.
- CVE-2021-40009Jan 7, 2022risk 0.00cvss —epss 0.01
There is an Out-of-bounds write vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
- CVE-2021-40005Jan 7, 2022risk 0.00cvss —epss 0.01
The distributed data service component has a vulnerability in data access control. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2021-40006Jan 7, 2022risk 0.00cvss —epss 0.00
Vulnerability of design defects in the security algorithm component. Successful exploitation of this vulnerability may affect confidentiality.
- CVE-2021-40004Jan 7, 2022risk 0.00cvss —epss 0.01
The cellular module has a vulnerability in permission management. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2021-40003Jan 7, 2022risk 0.00cvss —epss 0.01
HwPCAssistant has a path traversal vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2021-40002Jan 7, 2022risk 0.00cvss —epss 0.00
The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end.
- CVE-2021-40001Jan 7, 2022risk 0.00cvss —epss 0.01
The CaasKit module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the MeeTime application to be unavailable.
- CVE-2021-40000Jan 7, 2022risk 0.00cvss —epss 0.00
The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end.
- CVE-2021-39974Jan 3, 2022risk 0.00cvss —epss 0.01
There is an Out-of-bounds read in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-39973Jan 3, 2022risk 0.00cvss —epss 0.01
There is a Null pointer dereference in Smartphones.Successful exploitation of this vulnerability may cause the kernel to break down.
- CVE-2021-39969Jan 3, 2022risk 0.00cvss —epss 0.01
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-39966Jan 3, 2022risk 0.00cvss —epss 0.01
There is an Uninitialized AOD driver structure in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-39967Jan 3, 2022risk 0.00cvss —epss 0.01
There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast permission settings in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-37133Jan 3, 2022risk 0.00cvss —epss 0.01
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-39990Jan 3, 2022risk 0.00cvss —epss 0.01
The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of this vulnerability may affect user experience.
- CVE-2021-39988Jan 3, 2022risk 0.00cvss —epss 0.01
The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
- CVE-2021-39989Jan 3, 2022risk 0.00cvss —epss 0.01
The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
Page 46 of 54