Vendor CVEs
Huawei
All CVEs
2,254 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-54628 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability of incomplete verification information in the communication module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54627 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds write vulnerability in the skia module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54625 | 0.00 | — | 0.00 | Aug 6, 2025 | Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54626 | 0.00 | — | 0.00 | Aug 6, 2025 | Pointer dangling vulnerability in the cjwindow module. Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-54624 | 0.00 | — | 0.00 | Aug 6, 2025 | Unexpected injection event vulnerability in the multimodalinput module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54623 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds read vulnerability in the devicemanager module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54622 | 0.00 | — | 0.00 | Aug 6, 2025 | Binding authentication bypass vulnerability in the devicemanager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54621 | 0.00 | — | 0.00 | Aug 6, 2025 | Iterator failure issue in the WantAgent module. Impact: Successful exploitation of this vulnerability may cause memory release failures. | |||
| CVE-2025-54620 | 0.00 | — | 0.00 | Aug 6, 2025 | Deserialization vulnerability of untrusted data in the ability module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54619 | 0.00 | — | 0.00 | Aug 6, 2025 | Iterator failure issue in the multi-mode input module. Impact: Successful exploitation of this vulnerability may cause iterator failures and affect availability. | |||
| CVE-2025-54618 | 0.00 | — | 0.00 | Aug 6, 2025 | Permission control vulnerability in the distributed clipboard module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54617 | 0.00 | — | 0.00 | Aug 6, 2025 | Stack-based buffer overflow vulnerability in the dms_fwk module. Impact: Successful exploitation of this vulnerability can cause RCE. | |||
| CVE-2025-54616 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds array access vulnerability in the ArkUI framework. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54615 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability of insufficient information protection in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54614 | 0.00 | — | 0.00 | Aug 6, 2025 | Input verification vulnerability in the home screen module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54613 | 0.00 | — | 0.00 | Aug 6, 2025 | Iterator failure vulnerability in the card management module. Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-54612 | 0.00 | — | 0.00 | Aug 6, 2025 | Iterator failure vulnerability in the card management module. Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-54611 | 0.00 | — | 0.00 | Aug 6, 2025 | EXTRA_REFERRER resource read vulnerability in the Gallery module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54610 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds access vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54609 | 0.00 | — | 0.00 | Aug 6, 2025 | Out-of-bounds access vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-54608 | 0.00 | — | 0.00 | Aug 6, 2025 | Vulnerability that allows setting screen rotation direction without permission verification in the screen management module. Impact: Successful exploitation of this vulnerability may cause device screen orientation to be arbitrarily set. | |||
| CVE-2025-54607 | 0.00 | — | 0.00 | Aug 6, 2025 | Authentication management vulnerability in the ArkWeb module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-54606 | 0.00 | — | 0.00 | Aug 6, 2025 | Status verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | |||
| CVE-2025-54655 | 0.00 | — | 0.00 | Aug 6, 2025 | Race condition vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality and integrity of the virtualization graphics module. | |||
| CVE-2025-54653 | 0.00 | — | 0.00 | Aug 6, 2025 | Path traversal vulnerability in the virtualization file module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization file module. | |||
| CVE-2025-54652 | 0.00 | — | 0.00 | Aug 6, 2025 | Path traversal vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization module. | |||
| CVE-2025-53186 | 0.00 | — | 0.00 | Jul 7, 2025 | Vulnerability that allows third-party call apps to send broadcasts without verification in the audio framework module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-53185 | 0.00 | — | 0.00 | Jul 7, 2025 | Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released memory Impact: Successful exploitation of this vulnerability may affect service integrity. | |||
| CVE-2025-53184 | 0.00 | — | 0.00 | Jul 7, 2025 | Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-53183 | 0.00 | — | 0.00 | Jul 7, 2025 | Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-53182 | 0.00 | — | 0.00 | Jul 7, 2025 | Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-53181 | 0.00 | — | 0.00 | Jul 7, 2025 | Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-53180 | 0.00 | — | 0.00 | Jul 7, 2025 | Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-53179 | 0.00 | — | 0.00 | Jul 7, 2025 | Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-53178 | 0.00 | — | 0.00 | Jul 7, 2025 | Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule reminder function of head units. | |||
| CVE-2025-53177 | 0.00 | — | 0.00 | Jul 7, 2025 | Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule syncing function of watches. | |||
| CVE-2025-53176 | 0.00 | — | 0.00 | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function. | |||
| CVE-2025-53175 | 0.00 | — | 0.00 | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function. | |||
| CVE-2025-53174 | 0.00 | — | 0.00 | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function. | |||
| CVE-2025-53173 | 0.00 | — | 0.00 | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function. | |||
| CVE-2025-53172 | 0.00 | — | 0.00 | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function. | |||
| CVE-2025-53171 | 0.00 | — | 0.00 | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function. | |||
| CVE-2024-58117 | 0.00 | — | 0.00 | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function. | |||
| CVE-2025-53170 | 0.00 | — | 0.00 | Jul 7, 2025 | Null pointer dereference vulnerability in the application exit cause module Impact: Successful exploitation of this vulnerability may affect function stability. | |||
| CVE-2025-53169 | 0.00 | — | 0.00 | Jul 7, 2025 | Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness. | |||
| CVE-2025-53168 | 0.00 | — | 0.00 | Jul 7, 2025 | Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness. | |||
| CVE-2025-53167 | 0.00 | — | 0.00 | Jul 7, 2025 | Authentication vulnerability in the distributed collaboration framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-48908 | 0.00 | — | 0.00 | Jun 6, 2025 | Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-48911 | 0.00 | — | 0.00 | Jun 6, 2025 | Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-48910 | 0.00 | — | 0.00 | Jun 6, 2025 | Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability. |
- CVE-2025-54628Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of incomplete verification information in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54627Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write vulnerability in the skia module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54625Aug 6, 2025risk 0.00cvss —epss 0.00
Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54626Aug 6, 2025risk 0.00cvss —epss 0.00
Pointer dangling vulnerability in the cjwindow module. Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-54624Aug 6, 2025risk 0.00cvss —epss 0.00
Unexpected injection event vulnerability in the multimodalinput module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54623Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read vulnerability in the devicemanager module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54622Aug 6, 2025risk 0.00cvss —epss 0.00
Binding authentication bypass vulnerability in the devicemanager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54621Aug 6, 2025risk 0.00cvss —epss 0.00
Iterator failure issue in the WantAgent module. Impact: Successful exploitation of this vulnerability may cause memory release failures.
- CVE-2025-54620Aug 6, 2025risk 0.00cvss —epss 0.00
Deserialization vulnerability of untrusted data in the ability module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54619Aug 6, 2025risk 0.00cvss —epss 0.00
Iterator failure issue in the multi-mode input module. Impact: Successful exploitation of this vulnerability may cause iterator failures and affect availability.
- CVE-2025-54618Aug 6, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the distributed clipboard module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54617Aug 6, 2025risk 0.00cvss —epss 0.00
Stack-based buffer overflow vulnerability in the dms_fwk module. Impact: Successful exploitation of this vulnerability can cause RCE.
- CVE-2025-54616Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds array access vulnerability in the ArkUI framework. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54615Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of insufficient information protection in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54614Aug 6, 2025risk 0.00cvss —epss 0.00
Input verification vulnerability in the home screen module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54613Aug 6, 2025risk 0.00cvss —epss 0.00
Iterator failure vulnerability in the card management module. Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-54612Aug 6, 2025risk 0.00cvss —epss 0.00
Iterator failure vulnerability in the card management module. Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-54611Aug 6, 2025risk 0.00cvss —epss 0.00
EXTRA_REFERRER resource read vulnerability in the Gallery module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54610Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds access vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54609Aug 6, 2025risk 0.00cvss —epss 0.00
Out-of-bounds access vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-54608Aug 6, 2025risk 0.00cvss —epss 0.00
Vulnerability that allows setting screen rotation direction without permission verification in the screen management module. Impact: Successful exploitation of this vulnerability may cause device screen orientation to be arbitrarily set.
- CVE-2025-54607Aug 6, 2025risk 0.00cvss —epss 0.00
Authentication management vulnerability in the ArkWeb module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-54606Aug 6, 2025risk 0.00cvss —epss 0.00
Status verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- CVE-2025-54655Aug 6, 2025risk 0.00cvss —epss 0.00
Race condition vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality and integrity of the virtualization graphics module.
- CVE-2025-54653Aug 6, 2025risk 0.00cvss —epss 0.00
Path traversal vulnerability in the virtualization file module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization file module.
- CVE-2025-54652Aug 6, 2025risk 0.00cvss —epss 0.00
Path traversal vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization module.
- CVE-2025-53186Jul 7, 2025risk 0.00cvss —epss 0.00
Vulnerability that allows third-party call apps to send broadcasts without verification in the audio framework module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-53185Jul 7, 2025risk 0.00cvss —epss 0.00
Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released memory Impact: Successful exploitation of this vulnerability may affect service integrity.
- CVE-2025-53184Jul 7, 2025risk 0.00cvss —epss 0.00
Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-53183Jul 7, 2025risk 0.00cvss —epss 0.00
Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-53182Jul 7, 2025risk 0.00cvss —epss 0.00
Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-53181Jul 7, 2025risk 0.00cvss —epss 0.00
Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-53180Jul 7, 2025risk 0.00cvss —epss 0.00
Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-53179Jul 7, 2025risk 0.00cvss —epss 0.00
Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-53178Jul 7, 2025risk 0.00cvss —epss 0.00
Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule reminder function of head units.
- CVE-2025-53177Jul 7, 2025risk 0.00cvss —epss 0.00
Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule syncing function of watches.
- CVE-2025-53176Jul 7, 2025risk 0.00cvss —epss 0.00
Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.
- CVE-2025-53175Jul 7, 2025risk 0.00cvss —epss 0.00
Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.
- CVE-2025-53174Jul 7, 2025risk 0.00cvss —epss 0.00
Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.
- CVE-2025-53173Jul 7, 2025risk 0.00cvss —epss 0.00
Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.
- CVE-2025-53172Jul 7, 2025risk 0.00cvss —epss 0.00
Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.
- CVE-2025-53171Jul 7, 2025risk 0.00cvss —epss 0.00
Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.
- CVE-2024-58117Jul 7, 2025risk 0.00cvss —epss 0.00
Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.
- CVE-2025-53170Jul 7, 2025risk 0.00cvss —epss 0.00
Null pointer dereference vulnerability in the application exit cause module Impact: Successful exploitation of this vulnerability may affect function stability.
- CVE-2025-53169Jul 7, 2025risk 0.00cvss —epss 0.00
Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness.
- CVE-2025-53168Jul 7, 2025risk 0.00cvss —epss 0.00
Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness.
- CVE-2025-53167Jul 7, 2025risk 0.00cvss —epss 0.00
Authentication vulnerability in the distributed collaboration framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-48908Jun 6, 2025risk 0.00cvss —epss 0.00
Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-48911Jun 6, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-48910Jun 6, 2025risk 0.00cvss —epss 0.00
Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability.
Page 16 of 46