Total
404 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-44556 | 1 Huawei | 2 Emui, Harmonyos | 2023-03-03 | N/A | 7.5 HIGH |
Missing parameter type validation in the DRM module. Successful exploitation of this vulnerability may affect availability. | |||||
CVE-2022-48294 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-17 | N/A | 7.5 HIGH |
The IHwAttestationService interface has a defect in authentication. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48295 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-17 | N/A | 7.5 HIGH |
The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this vulnerability can lead to filling problems (batch installation of applications). | |||||
CVE-2022-48296 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-17 | N/A | 5.3 MEDIUM |
The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices. | |||||
CVE-2022-48301 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-17 | N/A | 7.5 HIGH |
The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled. | |||||
CVE-2022-48300 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48298 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access. | |||||
CVE-2022-48297 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The geofencing kernel code has a vulnerability of not verifying the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access. | |||||
CVE-2022-48302 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48299 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48293 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 6.5 MEDIUM |
The Bluetooth module has an OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48292 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 6.5 MEDIUM |
The Bluetooth module has an out-of-memory (OOM) vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48286 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The multi-screen collaboration module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48287 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data integrity. | |||||
CVE-2022-48288 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-48289 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-16 | N/A | 7.5 HIGH |
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-29793 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-02-10 | 5.0 MEDIUM | 7.5 HIGH |
There is a configuration defect in the activation lock of mobile phones.Successful exploitation of this vulnerability may affect application availability. | |||||
CVE-2022-47975 | 1 Huawei | 2 Emui, Harmonyos | 2023-02-09 | N/A | 7.5 HIGH |
The DUBAI module has a double free vulnerability. Successful exploitation of this vulnerability may affect system availability. | |||||
CVE-2021-46789 | 1 Huawei | 2 Emui, Magic Ui | 2023-02-01 | 5.0 MEDIUM | 7.5 HIGH |
Configuration defects in the secure OS module. Successful exploitation of this vulnerability can affect availability. | |||||
CVE-2021-40052 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-01-18 | 7.8 HIGH | 7.5 HIGH |
There is an incorrect buffer size calculation vulnerability in the video framework.Successful exploitation of this vulnerability may affect availability. |