Vulnerabilities > Huawei > Harmonyos > 2.0

DATE CVE VULNERABILITY TITLE RISK
2022-11-09 CVE-2022-44560 Unspecified vulnerability in Huawei Emui and Harmonyos
The launcher module has an Intent redirection vulnerability.
network
low complexity
huawei
5.3
5.3
2022-11-09 CVE-2022-44561 Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos
The preset launcher module has a permission verification vulnerability.
network
low complexity
huawei CWE-276
7.5
7.5
2022-11-09 CVE-2022-44562 Unspecified vulnerability in Huawei Emui and Harmonyos
The system framework layer has a vulnerability of serialization/deserialization mismatch.
network
low complexity
huawei
critical
 9.8
9.8
2022-11-09 CVE-2022-44563 Race Condition vulnerability in Huawei Emui and Harmonyos
There is a race condition vulnerability in SD upgrade mode.
network
high complexity
huawei CWE-362
5.9
5.9
2022-11-08 CVE-2022-44556 Improper Input Validation vulnerability in Huawei Emui and Harmonyos
Missing parameter type validation in the DRM module.
network
low complexity
huawei CWE-20
7.5
7.5
2022-10-14 CVE-2021-46839 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HW_KEYMASTER module has a vulnerability of missing bounds check on length.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.
network
low complexity
huawei CWE-125
critical
 9.1
9.1
2022-10-14 CVE-2021-46840 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HW_KEYMASTER module has an out-of-bounds access vulnerability in parameter set verification.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.
network
low complexity
huawei CWE-125
critical
 9.1
9.1
2022-10-14 CVE-2022-38977 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.
network
low complexity
huawei CWE-787
7.5
7.5
2022-10-14 CVE-2022-38980 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability in processing data packets of the proprietary protocol.Successful exploitation of this vulnerability may allow attackers to obtain process control permissions.
network
low complexity
huawei CWE-787
critical
 9.8
9.8
2022-10-14 CVE-2022-38981 Out-of-bounds Read vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause information leakage.
network
low complexity
huawei CWE-125
7.5
7.5