Emui
by Huawei
CVEs (745)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-38993 | 0.00 | — | 0.00 | Sep 16, 2022 | The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability. | |||
| CVE-2022-38990 | 0.00 | — | 0.00 | Sep 16, 2022 | The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability. | |||
| CVE-2022-39000 | 0.00 | — | 0.01 | Sep 16, 2022 | The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup. | |||
| CVE-2021-46836 | 0.00 | — | 0.00 | Sep 16, 2022 | Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2021-40024 | 0.00 | — | 0.00 | Sep 16, 2022 | Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2022-39008 | 0.00 | — | 0.01 | Sep 16, 2022 | The NFC module has bundle serialization/deserialization vulnerabilities. Successful exploitation of this vulnerability may cause third-party apps to read and write files that are accessible only to system apps. | |||
| CVE-2021-40030 | 0.00 | — | 0.00 | Aug 9, 2022 | The My HUAWEI app has a defect in the design. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2022-37005 | 0.00 | — | 0.00 | Aug 9, 2022 | The Settings application has an argument injection vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2022-37003 | 0.00 | — | 0.00 | Aug 9, 2022 | The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files. | |||
| CVE-2022-37004 | 0.00 | — | 0.01 | Aug 9, 2022 | The Settings application has a vulnerability of bypassing the out-of-box experience (OOBE). Successful exploitation of this vulnerability may affect the availability. | |||
| CVE-2022-37002 | 0.00 | — | 0.00 | Aug 9, 2022 | The SystemUI module has a privilege escalation vulnerability. Successful exploitation of this vulnerability can cause malicious applications to pop up windows or run in the background. | |||
| CVE-2022-37008 | 0.00 | — | 0.00 | Aug 9, 2022 | The recovery module has a vulnerability of bypassing the verification of an update package before use. Successful exploitation of this vulnerability may affect system stability. | |||
| CVE-2022-37007 | 0.00 | — | 0.01 | Aug 9, 2022 | The chinadrm module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect the availability. | |||
| CVE-2021-40034 | 0.00 | — | 0.01 | Aug 9, 2022 | The video framework has the memory overwriting vulnerability caused by addition overflow. Successful exploitation of this vulnerability may affect the availability. | |||
| CVE-2021-40016 | 0.00 | — | 0.00 | Jul 11, 2022 | Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect confidentiality. | |||
| CVE-2021-40013 | 0.00 | — | 0.00 | Jul 11, 2022 | Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect integrity. | |||
| CVE-2021-40012 | 0.00 | — | 0.01 | Jul 11, 2022 | Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality. | |||
| CVE-2022-34738 | 0.00 | — | 0.00 | Jul 11, 2022 | The SystemUI module has a vulnerability in permission control. If this vulnerability is successfully exploited, users are unaware of the service running in the background. | |||
| CVE-2022-34737 | 0.00 | — | 0.01 | Jul 11, 2022 | The application security module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may affect data integrity and confidentiality. | |||
| CVE-2022-34742 | 0.00 | — | 0.01 | Jul 11, 2022 | The system module has a read/write vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. |
- CVE-2022-38993Sep 16, 2022risk 0.00cvss —epss 0.00
The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.
- CVE-2022-38990Sep 16, 2022risk 0.00cvss —epss 0.00
The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.
- CVE-2022-39000Sep 16, 2022risk 0.00cvss —epss 0.01
The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup.
- CVE-2021-46836Sep 16, 2022risk 0.00cvss —epss 0.00
Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2021-40024Sep 16, 2022risk 0.00cvss —epss 0.00
Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2022-39008Sep 16, 2022risk 0.00cvss —epss 0.01
The NFC module has bundle serialization/deserialization vulnerabilities. Successful exploitation of this vulnerability may cause third-party apps to read and write files that are accessible only to system apps.
- CVE-2021-40030Aug 9, 2022risk 0.00cvss —epss 0.00
The My HUAWEI app has a defect in the design. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2022-37005Aug 9, 2022risk 0.00cvss —epss 0.00
The Settings application has an argument injection vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2022-37003Aug 9, 2022risk 0.00cvss —epss 0.00
The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files.
- CVE-2022-37004Aug 9, 2022risk 0.00cvss —epss 0.01
The Settings application has a vulnerability of bypassing the out-of-box experience (OOBE). Successful exploitation of this vulnerability may affect the availability.
- CVE-2022-37002Aug 9, 2022risk 0.00cvss —epss 0.00
The SystemUI module has a privilege escalation vulnerability. Successful exploitation of this vulnerability can cause malicious applications to pop up windows or run in the background.
- CVE-2022-37008Aug 9, 2022risk 0.00cvss —epss 0.00
The recovery module has a vulnerability of bypassing the verification of an update package before use. Successful exploitation of this vulnerability may affect system stability.
- CVE-2022-37007Aug 9, 2022risk 0.00cvss —epss 0.01
The chinadrm module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect the availability.
- CVE-2021-40034Aug 9, 2022risk 0.00cvss —epss 0.01
The video framework has the memory overwriting vulnerability caused by addition overflow. Successful exploitation of this vulnerability may affect the availability.
- CVE-2021-40016Jul 11, 2022risk 0.00cvss —epss 0.00
Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect confidentiality.
- CVE-2021-40013Jul 11, 2022risk 0.00cvss —epss 0.00
Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect integrity.
- CVE-2021-40012Jul 11, 2022risk 0.00cvss —epss 0.01
Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality.
- CVE-2022-34738Jul 11, 2022risk 0.00cvss —epss 0.00
The SystemUI module has a vulnerability in permission control. If this vulnerability is successfully exploited, users are unaware of the service running in the background.
- CVE-2022-34737Jul 11, 2022risk 0.00cvss —epss 0.01
The application security module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may affect data integrity and confidentiality.
- CVE-2022-34742Jul 11, 2022risk 0.00cvss —epss 0.01
The system module has a read/write vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
Page 27 of 38