Vulnerabilities > Huawei > Harmonyos > 2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-14 | CVE-2022-38982 | Unspecified vulnerability in Huawei Harmonyos 2.0 The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked. | 9.8 |
| 2022-10-14 | CVE-2022-38983 | Use After Free vulnerability in Huawei Emui and Harmonyos The BT Hfp Client module has a Use-After-Free (UAF) vulnerability.Successful exploitation of this vulnerability may result in arbitrary code execution. | 9.8 |
| 2022-10-14 | CVE-2022-38984 | Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality. | 7.5 |
| 2022-10-14 | CVE-2022-38985 | Improper Input Validation vulnerability in Huawei Emui and Harmonyos The facial recognition module has a vulnerability in input validation.Successful exploitation of this vulnerability may affect data confidentiality. | 7.5 |
| 2022-10-14 | CVE-2022-38986 | Unspecified vulnerability in Huawei Emui and Harmonyos The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability. | 9.1 |
| 2022-10-14 | CVE-2022-38998 | Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality. | 7.5 |
| 2022-10-14 | CVE-2022-39011 | Unspecified vulnerability in Huawei Emui and Harmonyos The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module. | 7.5 |
| 2022-10-14 | CVE-2022-41576 | Unspecified vulnerability in Huawei Emui and Harmonyos The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices. | 7.8 |
| 2022-10-14 | CVE-2022-41577 | Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitation of this vulnerability may cause out-of-bounds read in the kernel, which affects the device confidentiality and availability. | 7.1 |
| 2022-10-14 | CVE-2022-41578 | Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information. | 9.8 |