Emui
by Huawei
CVEs (745)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-34158 | 0.00 | — | 0.00 | Jun 19, 2023 | Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled. | |||
| CVE-2022-48499 | 0.00 | — | 0.00 | Jun 19, 2023 | Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2022-48500 | 0.00 | — | 0.00 | Jun 19, 2023 | Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2023-34159 | 0.00 | — | 0.00 | Jun 19, 2023 | Improper permission control vulnerability in the Notepad app.Successful exploitation of the vulnerability may lead to privilege escalation, which affects availability and confidentiality. | |||
| CVE-2022-48489 | 0.00 | — | 0.00 | Jun 19, 2023 | Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2022-48488 | 0.00 | — | 0.00 | Jun 19, 2023 | Vulnerability of bypassing the default desktop security controls.Successful exploitation of this vulnerability may cause unauthorized modifications to the desktop. | |||
| CVE-2023-34167 | 0.00 | — | 0.00 | Jun 19, 2023 | Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled. | |||
| CVE-2021-46881 | 0.00 | — | 0.00 | May 26, 2023 | The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2023-31227 | 0.00 | — | 0.00 | May 26, 2023 | The hwPartsDFR module has a vulnerability in API calling verification. Successful exploitation of this vulnerability may affect device confidentiality. | |||
| CVE-2023-31225 | 0.00 | — | 0.00 | May 26, 2023 | The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability may cause download failures and affect product availability. | |||
| CVE-2021-46885 | 0.00 | — | 0.00 | May 26, 2023 | The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2021-46883 | 0.00 | — | 0.00 | May 26, 2023 | The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2023-0117 | 0.00 | — | 0.00 | May 26, 2023 | The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitation of this vulnerability may affect availability of features,such as MeeTime. | |||
| CVE-2021-46882 | 0.00 | — | 0.00 | May 26, 2023 | The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2021-46884 | 0.00 | — | 0.00 | May 26, 2023 | The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2021-46886 | 0.00 | — | 0.00 | May 26, 2023 | The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2023-31226 | 0.00 | — | 0.00 | May 26, 2023 | The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability may affect confidentiality. | |||
| CVE-2022-48480 | 0.00 | — | 0.00 | May 26, 2023 | Integer overflow vulnerability in some phones. Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2021-46887 | 0.00 | — | 0.00 | May 26, 2023 | Lack of length check vulnerability in the HW_KEYMASTER module. Successful exploitation of this vulnerability may cause out-of-bounds read. | |||
| CVE-2023-0116 | 0.00 | — | 0.00 | May 26, 2023 | The reminder module lacks an authentication mechanism for broadcasts received. Successful exploitation of this vulnerability may affect availability. |
- CVE-2023-34158Jun 19, 2023risk 0.00cvss —epss 0.00
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.
- CVE-2022-48499Jun 19, 2023risk 0.00cvss —epss 0.00
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
- CVE-2022-48500Jun 19, 2023risk 0.00cvss —epss 0.00
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
- CVE-2023-34159Jun 19, 2023risk 0.00cvss —epss 0.00
Improper permission control vulnerability in the Notepad app.Successful exploitation of the vulnerability may lead to privilege escalation, which affects availability and confidentiality.
- CVE-2022-48489Jun 19, 2023risk 0.00cvss —epss 0.00
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
- CVE-2022-48488Jun 19, 2023risk 0.00cvss —epss 0.00
Vulnerability of bypassing the default desktop security controls.Successful exploitation of this vulnerability may cause unauthorized modifications to the desktop.
- CVE-2023-34167Jun 19, 2023risk 0.00cvss —epss 0.00
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.
- CVE-2021-46881May 26, 2023risk 0.00cvss —epss 0.00
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.
- CVE-2023-31227May 26, 2023risk 0.00cvss —epss 0.00
The hwPartsDFR module has a vulnerability in API calling verification. Successful exploitation of this vulnerability may affect device confidentiality.
- CVE-2023-31225May 26, 2023risk 0.00cvss —epss 0.00
The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability may cause download failures and affect product availability.
- CVE-2021-46885May 26, 2023risk 0.00cvss —epss 0.00
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.
- CVE-2021-46883May 26, 2023risk 0.00cvss —epss 0.00
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.
- CVE-2023-0117May 26, 2023risk 0.00cvss —epss 0.00
The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitation of this vulnerability may affect availability of features,such as MeeTime.
- CVE-2021-46882May 26, 2023risk 0.00cvss —epss 0.00
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.
- CVE-2021-46884May 26, 2023risk 0.00cvss —epss 0.00
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.
- CVE-2021-46886May 26, 2023risk 0.00cvss —epss 0.00
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.
- CVE-2023-31226May 26, 2023risk 0.00cvss —epss 0.00
The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability may affect confidentiality.
- CVE-2022-48480May 26, 2023risk 0.00cvss —epss 0.00
Integer overflow vulnerability in some phones. Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-46887May 26, 2023risk 0.00cvss —epss 0.00
Lack of length check vulnerability in the HW_KEYMASTER module. Successful exploitation of this vulnerability may cause out-of-bounds read.
- CVE-2023-0116May 26, 2023risk 0.00cvss —epss 0.00
The reminder module lacks an authentication mechanism for broadcasts received. Successful exploitation of this vulnerability may affect availability.
Page 19 of 38