Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-08 | CVE-2024-56454 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2025-01-08 | CVE-2024-56455 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2025-01-08 | CVE-2024-56456 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2025-01-08 | CVE-2023-52953 | Path Traversal vulnerability in Huawei Emui and Harmonyos Path traversal vulnerability in the Medialibrary module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. | 9.1 |
| 2025-01-08 | CVE-2023-52954 | Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos Vulnerability of improper permission control in the Gallery module Impact: Successful exploitation of this vulnerability may affect availability. | 7.5 |
| 2025-01-08 | CVE-2023-52955 | Improper Authentication vulnerability in Huawei Emui and Harmonyos Vulnerability of improper authentication in the ANS system service module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | 7.5 |
| 2025-01-08 | CVE-2024-54120 | Race Condition vulnerability in Huawei Harmonyos 5.0.0 Race condition vulnerability in the distributed notification module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | 5.9 |
| 2025-01-08 | CVE-2024-56437 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of input parameters not being verified in the widget framework module Impact: Successful exploitation of this vulnerability may affect availability. | 7.5 |
| 2025-01-08 | CVE-2024-56438 | Unspecified vulnerability in Huawei Emui and Harmonyos Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability. | 7.5 |
| 2025-01-08 | CVE-2024-56439 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Access control vulnerability in the identity authentication module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |