Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Harmonyos
(Huawei)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 869 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-02-09 | CVE-2022-48295 | The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this vulnerability can lead to filling problems (batch installation of applications). | Emui, Harmonyos | 7.5 | ||
| 2023-02-09 | CVE-2022-48296 | The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices. | Emui, Harmonyos | 5.3 | ||
| 2023-02-09 | CVE-2022-48297 | The geofencing kernel code has a vulnerability of not verifying the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access. | Emui, Harmonyos | 7.5 | ||
| 2023-02-09 | CVE-2022-48298 | The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access. | Emui, Harmonyos | 7.5 | ||
| 2023-02-09 | CVE-2022-48299 | The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 7.5 | ||
| 2023-02-09 | CVE-2022-48300 | The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 7.5 | ||
| 2023-02-09 | CVE-2022-48301 | The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled. | Emui, Harmonyos | 7.5 | ||
| 2023-02-09 | CVE-2022-48302 | The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 7.5 | ||
| 2023-03-27 | CVE-2022-48291 | The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerability may affect confidentiality. | Emui, Harmonyos | 6.5 | ||
| 2023-03-27 | CVE-2022-48354 | The Bluetooth module has a heap out-of-bounds write vulnerability. Successful exploitation of this vulnerability can cause the Bluetooth process to crash. | Emui, Harmonyos | 6.5 |