Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Openharmony
(Openatom)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 111 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-03-04 | CVE-2025-23414 | in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios. | Openharmony | 7.8 | ||
| 2025-03-04 | CVE-2025-23418 | in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read. | Openharmony | 5.5 | ||
| 2025-03-04 | CVE-2025-23420 | in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios. | Openharmony | 7.8 | ||
| 2025-03-04 | CVE-2025-24301 | in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios. | Openharmony | 7.8 | ||
| 2025-03-04 | CVE-2025-24309 | in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios. | Openharmony | 7.8 | ||
| 2025-02-07 | CVE-2025-0302 | in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow. | Openharmony | 5.5 | ||
| 2025-02-07 | CVE-2025-0303 | in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through buffer overflow. | Openharmony | 7.8 | ||
| 2025-02-07 | CVE-2025-0304 | in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free. | Openharmony | 7.8 | ||
| 2024-04-02 | CVE-2024-22092 | in OpenHarmony v3.2.4 and prior versions allow a remote attacker bypass permission verification to install apps, although these require user action. | Openharmony | 7.4 | ||
| 2024-04-02 | CVE-2024-22180 | in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through use after free. | Openharmony | 5.5 |