Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Harmonyos
(Huawei)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 869 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-04-11 | CVE-2021-46742 | The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of this vulnerability may affect the availability. | Emui, Harmonyos, Magic_ui | 9.1 | ||
| 2022-04-11 | CVE-2022-22253 | The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-04-11 | CVE-2022-22254 | A permission bypass vulnerability exists when the NFC CAs access the TEE.Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-04-11 | CVE-2022-22255 | The application framework has a common DoS vulnerability.Successful exploitation of this vulnerability may affect the availability. | Emui, Harmonyos | 7.5 | ||
| 2022-04-11 | CVE-2022-22256 | The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-04-11 | CVE-2022-22257 | The customization framework has a vulnerability of improper permission control.Successful exploitation of this vulnerability may affect data integrity. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-04-11 | CVE-2022-22258 | The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege. | Emui, Harmonyos, Magic_ui | 9.8 | ||
| 2022-05-13 | CVE-2021-46785 | The Property module has a vulnerability in permission control.This vulnerability can be exploited to obtain the unique device identifier. | Emui, Harmonyos | 5.3 | ||
| 2022-05-13 | CVE-2021-46786 | The audio module has a vulnerability in verifying the parameters passed by the application space.Successful exploitation of this vulnerability may cause out-of-bounds memory access. | Emui, Harmonyos, Magic_ui | 9.8 | ||
| 2022-05-13 | CVE-2021-46787 | The AMS module has a vulnerability of improper permission control.Successful exploitation of this vulnerability may cause non-system application processes to crash. | Emui, Harmonyos, Magic_ui | 7.5 |