Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-54644 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54643 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54642 | 0.00 | — | 0.00 | Aug 6, 2025 | Issue of buffer overflow caused by insufficient data verification in the kernel gyroscope module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54641 | 0.00 | — | 0.00 | Aug 6, 2025 | Issue of buffer overflow caused by insufficient data verification in the kernel acceleration module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54640 | 0.00 | — | 0.00 | Aug 6, 2025 | ParcelMismatch vulnerability in attribute deserialization. Impact: Successful exploitation of this vulnerability may cause playback control screen display exceptions. | |||
| CVE-2025-54639 | 0.00 | — | 0.00 | Aug 6, 2025 | ParcelMismatch vulnerability in attribute deserialization. Impact: Successful exploitation of this vulnerability may cause playback control screen display exceptions. | |||
| CVE-2025-54638 | 0.00 | — | 0.00 | Aug 6, 2025 | Issue of inconsistent read/write serialization in the ad module. Impact: Successful exploitation of this vulnerability may affect the availability of the ad service. | |||
| CVE-2025-54637 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54636 | 0.00 | — | 0.00 | Aug 6, 2025 | Issue of buffer overflow caused by insufficient data verification in the kernel drop detection module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54635 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54634 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability of improper processing of abnormal conditions in huge page separation. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54633 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds read vulnerability in the register configuration of the DMA module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54632 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability of insufficient data length verification in the HVB module. Impact: Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2025-54631 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability of insufficient data length verification in the partition module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54630 | 0.00 | — | 0.00 | Aug 6, 2025 | :Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54629 | 0.00 | — | 0.00 | Aug 6, 2025 | Race condition issue occurring in the physical page import process of the memory management module. Impact: Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2025-54628 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability of incomplete verification information in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54627 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds write vulnerability in the skia module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54625 | 0.00 | — | 0.00 | Aug 6, 2025 | Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54626 | 0.00 | — | 0.00 | Aug 6, 2025 | Pointer dangling vulnerability in the cjwindow module. Impact: Successful exploitation of this vulnerability may affect function stability. |
- CVE-2025-54644Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54643Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54642Aug 6, 2025risk 0.00cvss —epss 0.00
Issue of buffer overflow caused by insufficient data verification in the kernel gyroscope module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54641Aug 6, 2025risk 0.00cvss —epss 0.00
Issue of buffer overflow caused by insufficient data verification in the kernel acceleration module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54640Aug 6, 2025risk 0.00cvss —epss 0.00
ParcelMismatch vulnerability in attribute deserialization. Impact: Successful exploitation of this vulnerability may cause playback control screen display exceptions.
- CVE-2025-54639Aug 6, 2025risk 0.00cvss —epss 0.00
ParcelMismatch vulnerability in attribute deserialization. Impact: Successful exploitation of this vulnerability may cause playback control screen display exceptions.
- CVE-2025-54638Aug 6, 2025risk 0.00cvss —epss 0.00
Issue of inconsistent read/write serialization in the ad module. Impact: Successful exploitation of this vulnerability may affect the availability of the ad service.
- CVE-2025-54637Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54636Aug 6, 2025risk 0.00cvss —epss 0.00
Issue of buffer overflow caused by insufficient data verification in the kernel drop detection module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54635Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54634Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper processing of abnormal conditions in huge page separation. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54633Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read vulnerability in the register configuration of the DMA module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54632Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of insufficient data length verification in the HVB module. Impact: Successful exploitation of this vulnerability may affect service integrity.
- CVE-2025-54631Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of insufficient data length verification in the partition module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54630Aug 6, 2025risk 0.00cvss —epss 0.00
:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54629Aug 6, 2025risk 0.00cvss —epss 0.00
Race condition issue occurring in the physical page import process of the memory management module. Impact: Successful exploitation of this vulnerability may affect service integrity.
- CVE-2025-54628Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of incomplete verification information in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54627Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write vulnerability in the skia module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54625Aug 6, 2025risk 0.00cvss —epss 0.00
Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54626Aug 6, 2025risk 0.00cvss —epss 0.00
Pointer dangling vulnerability in the cjwindow module. Impact: Successful exploitation of this vulnerability may affect function stability.
Page 8 of 54