Emui
by Huawei
CVEs (745)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-34739 | 0.00 | — | 0.01 | Jul 11, 2022 | The fingerprint module has a vulnerability of overflow in arithmetic addition. Successful exploitation of this vulnerability may result in the acquisition of data from unknown addresses in address mappings. | |||
| CVE-2022-34741 | 0.00 | — | 0.00 | Jul 11, 2022 | The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability may cause exceptions in NFC card registration, deletion, and activation. | |||
| CVE-2022-34740 | 0.00 | — | 0.00 | Jul 11, 2022 | The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability may cause exceptions in NFC card registration, deletion, and activation. | |||
| CVE-2022-34743 | 0.00 | — | 0.01 | Jul 11, 2022 | The AT commands of the USB port have an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect system availability. | |||
| CVE-2022-34736 | 0.00 | — | 0.01 | Jul 11, 2022 | The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability. | |||
| CVE-2022-34735 | 0.00 | — | 0.01 | Jul 11, 2022 | The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability. | |||
| CVE-2021-46741 | 0.00 | — | 0.01 | Jul 11, 2022 | The basic framework and setting module have defects, which were introduced during the design. Successful exploitation of this vulnerability may affect system integrity. | |||
| CVE-2022-31752 | 0.00 | — | 0.00 | Jun 13, 2022 | Missing authorization vulnerability in the system components. Successful exploitation of this vulnerability will affect confidentiality. | |||
| CVE-2022-31761 | 0.00 | — | 0.01 | Jun 13, 2022 | Configuration defects in the secure OS module. Successful exploitation of this vulnerability will affect confidentiality. | |||
| CVE-2021-46813 | 0.00 | — | 0.01 | Jun 13, 2022 | Vulnerability of residual files not being deleted after an update in the ChinaDRM module. Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2022-31754 | 0.00 | — | 0.01 | Jun 13, 2022 | Logical defects in code implementation in some products. Successful exploitation of this vulnerability may affect the availability of some features. | |||
| CVE-2021-46811 | 0.00 | — | 0.00 | Jun 13, 2022 | HwSEServiceAPP has a vulnerability in permission management. Successful exploitation of this vulnerability may cause disclosure of the Card Production Life Cycle (CPLC) information. | |||
| CVE-2022-31753 | 0.00 | — | 0.01 | Jun 13, 2022 | The voice wakeup module has a vulnerability of using externally-controlled format strings. Successful exploitation of this vulnerability may affect system availability. | |||
| CVE-2022-31757 | 0.00 | — | 0.01 | Jun 13, 2022 | The setting module has a vulnerability of improper use of APIs. Successful exploitation of this vulnerability may affect data confidentiality. | |||
| CVE-2021-46812 | 0.00 | — | 0.01 | Jun 13, 2022 | The Device Manager has a vulnerability in multi-device interaction. Successful exploitation of this vulnerability may affect data integrity. | |||
| CVE-2022-31760 | 0.00 | — | 0.01 | Jun 13, 2022 | Dialog boxes can still be displayed even if the screen is locked in carrier-customized USSD services. Successful exploitation of this vulnerability may affect data integrity and confidentiality. | |||
| CVE-2022-31762 | 0.00 | — | 0.00 | Jun 13, 2022 | The AMS module has a vulnerability in input validation. Successful exploitation of this vulnerability may cause privilege escalation. | |||
| CVE-2022-31759 | 0.00 | — | 0.00 | Jun 13, 2022 | AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this vulnerability may affect system availability. | |||
| CVE-2022-31755 | 0.00 | — | 0.00 | Jun 13, 2022 | The communication module has a vulnerability of improper permission preservation. Successful exploitation of this vulnerability may affect system availability. | |||
| CVE-2022-31756 | 0.00 | — | 0.00 | Jun 13, 2022 | The fingerprint sensor module has design defects. Successful exploitation of this vulnerability may affect data confidentiality. |
- CVE-2022-34739Jul 11, 2022risk 0.00cvss —epss 0.01
The fingerprint module has a vulnerability of overflow in arithmetic addition. Successful exploitation of this vulnerability may result in the acquisition of data from unknown addresses in address mappings.
- CVE-2022-34741Jul 11, 2022risk 0.00cvss —epss 0.00
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability may cause exceptions in NFC card registration, deletion, and activation.
- CVE-2022-34740Jul 11, 2022risk 0.00cvss —epss 0.00
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability may cause exceptions in NFC card registration, deletion, and activation.
- CVE-2022-34743Jul 11, 2022risk 0.00cvss —epss 0.01
The AT commands of the USB port have an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect system availability.
- CVE-2022-34736Jul 11, 2022risk 0.00cvss —epss 0.01
The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability.
- CVE-2022-34735Jul 11, 2022risk 0.00cvss —epss 0.01
The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability.
- CVE-2021-46741Jul 11, 2022risk 0.00cvss —epss 0.01
The basic framework and setting module have defects, which were introduced during the design. Successful exploitation of this vulnerability may affect system integrity.
- CVE-2022-31752Jun 13, 2022risk 0.00cvss —epss 0.00
Missing authorization vulnerability in the system components. Successful exploitation of this vulnerability will affect confidentiality.
- CVE-2022-31761Jun 13, 2022risk 0.00cvss —epss 0.01
Configuration defects in the secure OS module. Successful exploitation of this vulnerability will affect confidentiality.
- CVE-2021-46813Jun 13, 2022risk 0.00cvss —epss 0.01
Vulnerability of residual files not being deleted after an update in the ChinaDRM module. Successful exploitation of this vulnerability may affect availability.
- CVE-2022-31754Jun 13, 2022risk 0.00cvss —epss 0.01
Logical defects in code implementation in some products. Successful exploitation of this vulnerability may affect the availability of some features.
- CVE-2021-46811Jun 13, 2022risk 0.00cvss —epss 0.00
HwSEServiceAPP has a vulnerability in permission management. Successful exploitation of this vulnerability may cause disclosure of the Card Production Life Cycle (CPLC) information.
- CVE-2022-31753Jun 13, 2022risk 0.00cvss —epss 0.01
The voice wakeup module has a vulnerability of using externally-controlled format strings. Successful exploitation of this vulnerability may affect system availability.
- CVE-2022-31757Jun 13, 2022risk 0.00cvss —epss 0.01
The setting module has a vulnerability of improper use of APIs. Successful exploitation of this vulnerability may affect data confidentiality.
- CVE-2021-46812Jun 13, 2022risk 0.00cvss —epss 0.01
The Device Manager has a vulnerability in multi-device interaction. Successful exploitation of this vulnerability may affect data integrity.
- CVE-2022-31760Jun 13, 2022risk 0.00cvss —epss 0.01
Dialog boxes can still be displayed even if the screen is locked in carrier-customized USSD services. Successful exploitation of this vulnerability may affect data integrity and confidentiality.
- CVE-2022-31762Jun 13, 2022risk 0.00cvss —epss 0.00
The AMS module has a vulnerability in input validation. Successful exploitation of this vulnerability may cause privilege escalation.
- CVE-2022-31759Jun 13, 2022risk 0.00cvss —epss 0.00
AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this vulnerability may affect system availability.
- CVE-2022-31755Jun 13, 2022risk 0.00cvss —epss 0.00
The communication module has a vulnerability of improper permission preservation. Successful exploitation of this vulnerability may affect system availability.
- CVE-2022-31756Jun 13, 2022risk 0.00cvss —epss 0.00
The fingerprint sensor module has design defects. Successful exploitation of this vulnerability may affect data confidentiality.
Page 28 of 38