Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Harmonyos
(Huawei)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 869 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-08-10 | CVE-2022-37002 | The SystemUI module has a privilege escalation vulnerability. Successful exploitation of this vulnerability can cause malicious applications to pop up windows or run in the background. | Emui, Harmonyos, Magic_ui | 9.8 | ||
| 2022-08-10 | CVE-2022-37003 | The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files. | Emui, Harmonyos, Magic_ui | 9.8 | ||
| 2022-08-10 | CVE-2022-37004 | The Settings application has a vulnerability of bypassing the out-of-box experience (OOBE). Successful exploitation of this vulnerability may affect the availability. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-08-10 | CVE-2022-37005 | The Settings application has an argument injection vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-08-10 | CVE-2022-37006 | Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability. | Emui, Harmonyos | 7.5 | ||
| 2022-08-10 | CVE-2022-37007 | The chinadrm module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect the availability. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-08-10 | CVE-2022-37008 | The recovery module has a vulnerability of bypassing the verification of an update package before use. Successful exploitation of this vulnerability may affect system stability. | Emui, Harmonyos, Magic_ui | 7.5 | ||
| 2022-09-16 | CVE-2021-40017 | The HW_KEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access. | Emui, Harmonyos | 9.8 | ||
| 2022-09-16 | CVE-2021-40024 | Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 7.5 | ||
| 2022-09-16 | CVE-2021-46836 | Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 7.5 |