Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Harmonyos
(Huawei)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 823 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-11-09 | CVE-2022-44553 | The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider. Successful exploitation of this vulnerability may cause third-party apps to start periodically. | Emui, Harmonyos | 5.3 | ||
| 2022-11-09 | CVE-2022-44554 | The power module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause abnormal status of a module on the device. | Emui, Harmonyos | 7.5 | ||
| 2022-11-09 | CVE-2022-44555 | The DDMP/ODMF module has a service hijacking vulnerability. Successful exploit of this vulnerability may cause services to be unavailable. | Emui, Harmonyos | 7.5 | ||
| 2022-11-09 | CVE-2022-44557 | The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 7.5 | ||
| 2022-11-09 | CVE-2022-44558 | The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation. | Emui, Harmonyos | 9.8 | ||
| 2022-11-09 | CVE-2022-44559 | The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation. | Emui, Harmonyos | 9.8 | ||
| 2022-11-09 | CVE-2022-44560 | The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified. | Emui, Harmonyos | 5.3 | ||
| 2022-11-09 | CVE-2022-44561 | The preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauthorized apps add arbitrary widgets and shortcuts without interaction. | Emui, Harmonyos | 7.5 | ||
| 2022-11-09 | CVE-2022-44562 | The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation. | Emui, Harmonyos | 9.8 | ||
| 2022-11-09 | CVE-2022-44563 | There is a race condition vulnerability in SD upgrade mode. Successful exploitation of this vulnerability may affect data confidentiality. | Emui, Harmonyos | 5.9 |