Openharmony
by OpenHarmony
CVEs (178)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-39775 | 0.00 | — | 0.00 | Sep 2, 2024 | in OpenHarmony v4.1.0 and prior versions allow a remote attacker cause information leak through out-of-bounds Read. | |||
| CVE-2024-39612 | 0.00 | — | 0.00 | Sep 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read. | |||
| CVE-2024-38386 | 0.00 | — | 0.00 | Sep 2, 2024 | in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. | |||
| CVE-2024-38382 | 0.00 | — | 0.00 | Sep 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read. | |||
| CVE-2024-28044 | 0.00 | — | 0.00 | Sep 2, 2024 | in OpenHarmony v4.1.0 and prior versions allow a local attacker cause crash through integer overflow. | |||
| CVE-2024-37077 | 0.00 | — | 0.01 | Jul 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write. | |||
| CVE-2024-37185 | 0.00 | — | 0.01 | Jul 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write. | |||
| CVE-2024-36260 | 0.00 | — | 0.01 | Jul 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write. | |||
| CVE-2024-36278 | 0.00 | — | 0.00 | Jul 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion. | |||
| CVE-2024-36243 | 0.00 | — | 0.01 | Jul 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write. | |||
| CVE-2024-37030 | 0.00 | — | 0.01 | Jul 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through use after free. | |||
| CVE-2024-31071 | 0.00 | — | 0.00 | Jul 2, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion. | |||
| CVE-2024-3759 | 0.00 | — | 0.00 | May 7, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through use after free. | |||
| CVE-2024-3758 | 0.00 | — | 0.00 | May 7, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through heap buffer overflow. | |||
| CVE-2024-3757 | 0.00 | — | 0.00 | May 7, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through integer overflow. | |||
| CVE-2024-31078 | 0.00 | — | 0.00 | May 7, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL pointer dereference. | |||
| CVE-2024-23808 | 0.00 | — | 0.00 | May 7, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free or cause DOS through NULL pointer dereference. | |||
| CVE-2024-27217 | 0.00 | — | 0.00 | May 7, 2024 | in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. |
- CVE-2024-39775Sep 2, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.1.0 and prior versions allow a remote attacker cause information leak through out-of-bounds Read.
- CVE-2024-39612Sep 2, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
- CVE-2024-38386Sep 2, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
- CVE-2024-38382Sep 2, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
- CVE-2024-28044Sep 2, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause crash through integer overflow.
- CVE-2024-37077Jul 2, 2024risk 0.00cvss —epss 0.01
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
- CVE-2024-37185Jul 2, 2024risk 0.00cvss —epss 0.01
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
- CVE-2024-36260Jul 2, 2024risk 0.00cvss —epss 0.01
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
- CVE-2024-36278Jul 2, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion.
- CVE-2024-36243Jul 2, 2024risk 0.00cvss —epss 0.01
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write.
- CVE-2024-37030Jul 2, 2024risk 0.00cvss —epss 0.01
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through use after free.
- CVE-2024-31071Jul 2, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion.
- CVE-2024-3759May 7, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through use after free.
- CVE-2024-3758May 7, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through heap buffer overflow.
- CVE-2024-3757May 7, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through integer overflow.
- CVE-2024-31078May 7, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL pointer dereference.
- CVE-2024-23808May 7, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free or cause DOS through NULL pointer dereference.
- CVE-2024-27217May 7, 2024risk 0.00cvss —epss 0.00
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.
Page 9 of 9