Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-39987 | 0.00 | — | 0.01 | Jan 3, 2022 | The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart. | |||
| CVE-2021-39985 | 0.00 | — | 0.01 | Jan 3, 2022 | The HwNearbyMain module has a Improper Validation of Array Index vulnerability.Successful exploitation of this vulnerability may cause a process to restart. | |||
| CVE-2021-39984 | 0.00 | — | 0.01 | Jan 3, 2022 | Huawei idap module has a Out-of-bounds Read vulnerability.Successful exploitation of this vulnerability may cause Denial of Service. | |||
| CVE-2021-39977 | 0.00 | — | 0.01 | Jan 3, 2022 | The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart. | |||
| CVE-2021-39983 | 0.00 | — | 0.01 | Jan 3, 2022 | The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart. | |||
| CVE-2021-37118 | 0.00 | — | 0.01 | Jan 3, 2022 | The HwNearbyMain module has a Improper Handling of Exceptional Conditions vulnerability.Successful exploitation of this vulnerability may lead to message leak. | |||
| CVE-2021-37112 | 0.00 | — | 0.00 | Jan 3, 2022 | Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak. | |||
| CVE-2021-37119 | 0.00 | — | 0.01 | Jan 3, 2022 | There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS. | |||
| CVE-2021-37117 | 0.00 | — | 0.01 | Jan 3, 2022 | There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS. | |||
| CVE-2021-37113 | 0.00 | — | 0.01 | Jan 3, 2022 | There is a Privilege escalation vulnerability with the file system component in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-37114 | 0.00 | — | 0.01 | Jan 3, 2022 | There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-37111 | 0.00 | — | 0.01 | Jan 3, 2022 | There is a Memory leakage vulnerability in Smartphone.Successful exploitation of this vulnerability may cause memory exhaustion. | |||
| CVE-2021-39982 | 0.00 | — | 0.01 | Jan 3, 2022 | Phone Manager application has a Improper Privilege Management vulnerability.Successful exploitation of this vulnerability may read and write arbitrary files by tampering with Phone Manager notifications. | |||
| CVE-2021-39980 | 0.00 | — | 0.01 | Jan 3, 2022 | Telephony application has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could lead to sensitive information disclosure. | |||
| CVE-2021-39981 | 0.00 | — | 0.00 | Jan 3, 2022 | Chang Lian application has a vulnerability which can be maliciously exploited to hide the calling number.Successful exploitation of this vulnerability allows you to make an anonymous call. | |||
| CVE-2021-39979 | 0.00 | — | 0.01 | Jan 3, 2022 | HHEE system has a Code Injection vulnerability.Successful exploitation of this vulnerability may affect HHEE system integrity. | |||
| CVE-2021-39978 | 0.00 | — | 0.01 | Jan 3, 2022 | Telephony application has a SQL Injection vulnerability.Successful exploitation of this vulnerability may cause privacy and security issues. | |||
| CVE-2021-39972 | 0.00 | — | 0.01 | Jan 3, 2022 | MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could compromise confidentiality. | |||
| CVE-2021-39975 | 0.00 | — | 0.01 | Jan 3, 2022 | Hilinksvc has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause denial of service attacks. | |||
| CVE-2021-39971 | 0.00 | — | 0.01 | Jan 3, 2022 | Password vault has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability could compromise confidentiality. |
- CVE-2021-39987Jan 3, 2022risk 0.00cvss —epss 0.01
The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
- CVE-2021-39985Jan 3, 2022risk 0.00cvss —epss 0.01
The HwNearbyMain module has a Improper Validation of Array Index vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
- CVE-2021-39984Jan 3, 2022risk 0.00cvss —epss 0.01
Huawei idap module has a Out-of-bounds Read vulnerability.Successful exploitation of this vulnerability may cause Denial of Service.
- CVE-2021-39977Jan 3, 2022risk 0.00cvss —epss 0.01
The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
- CVE-2021-39983Jan 3, 2022risk 0.00cvss —epss 0.01
The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
- CVE-2021-37118Jan 3, 2022risk 0.00cvss —epss 0.01
The HwNearbyMain module has a Improper Handling of Exceptional Conditions vulnerability.Successful exploitation of this vulnerability may lead to message leak.
- CVE-2021-37112Jan 3, 2022risk 0.00cvss —epss 0.00
Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak.
- CVE-2021-37119Jan 3, 2022risk 0.00cvss —epss 0.01
There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.
- CVE-2021-37117Jan 3, 2022risk 0.00cvss —epss 0.01
There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.
- CVE-2021-37113Jan 3, 2022risk 0.00cvss —epss 0.01
There is a Privilege escalation vulnerability with the file system component in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-37114Jan 3, 2022risk 0.00cvss —epss 0.01
There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-37111Jan 3, 2022risk 0.00cvss —epss 0.01
There is a Memory leakage vulnerability in Smartphone.Successful exploitation of this vulnerability may cause memory exhaustion.
- CVE-2021-39982Jan 3, 2022risk 0.00cvss —epss 0.01
Phone Manager application has a Improper Privilege Management vulnerability.Successful exploitation of this vulnerability may read and write arbitrary files by tampering with Phone Manager notifications.
- CVE-2021-39980Jan 3, 2022risk 0.00cvss —epss 0.01
Telephony application has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could lead to sensitive information disclosure.
- CVE-2021-39981Jan 3, 2022risk 0.00cvss —epss 0.00
Chang Lian application has a vulnerability which can be maliciously exploited to hide the calling number.Successful exploitation of this vulnerability allows you to make an anonymous call.
- CVE-2021-39979Jan 3, 2022risk 0.00cvss —epss 0.01
HHEE system has a Code Injection vulnerability.Successful exploitation of this vulnerability may affect HHEE system integrity.
- CVE-2021-39978Jan 3, 2022risk 0.00cvss —epss 0.01
Telephony application has a SQL Injection vulnerability.Successful exploitation of this vulnerability may cause privacy and security issues.
- CVE-2021-39972Jan 3, 2022risk 0.00cvss —epss 0.01
MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.
- CVE-2021-39975Jan 3, 2022risk 0.00cvss —epss 0.01
Hilinksvc has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause denial of service attacks.
- CVE-2021-39971Jan 3, 2022risk 0.00cvss —epss 0.01
Password vault has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.
Page 47 of 54