Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Harmonyos
(Huawei)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 834 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-10-14 | CVE-2022-38985 | The facial recognition module has a vulnerability in input validation.Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 7.5 | ||
| 2022-10-14 | CVE-2022-38986 | The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability. | Emui, Harmonyos | 9.1 | ||
| 2022-10-14 | CVE-2022-38998 | The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality. | Emui, Harmonyos | 7.5 | ||
| 2022-10-14 | CVE-2022-39011 | The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module. | Emui, Harmonyos | 7.5 | ||
| 2022-10-14 | CVE-2022-41576 | The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices. | Emui, Harmonyos | 7.8 | ||
| 2022-10-14 | CVE-2022-41577 | The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitation of this vulnerability may cause out-of-bounds read in the kernel, which affects the device confidentiality and availability. | Emui, Harmonyos | 7.1 | ||
| 2022-10-14 | CVE-2022-41578 | The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information. | Emui, Harmonyos | 9.8 | ||
| 2022-10-14 | CVE-2022-41580 | The HW_KEYMASTER module has a vulnerability of not verifying the data read.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access. | Emui, Harmonyos | 9.8 | ||
| 2022-10-14 | CVE-2022-41581 | The HW_KEYMASTER module has a vulnerability of not verifying the data read.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access. | Emui, Harmonyos | 9.1 | ||
| 2022-10-14 | CVE-2022-41582 | The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability. | Emui, Harmonyos | 7.5 |