Vulnerabilities > Huawei > Harmonyos > 2.1

DATE CVE VULNERABILITY TITLE RISK
2022-11-09 CVE-2022-44563 Race Condition vulnerability in Huawei Emui and Harmonyos
There is a race condition vulnerability in SD upgrade mode.
network
high complexity
huawei CWE-362
5.9
5.9
2022-10-14 CVE-2022-38977 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.
network
low complexity
huawei CWE-787
7.5
7.5
2022-10-14 CVE-2022-38980 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability in processing data packets of the proprietary protocol.Successful exploitation of this vulnerability may allow attackers to obtain process control permissions.
network
low complexity
huawei CWE-787
critical
 9.8
9.8
2022-10-14 CVE-2022-38981 Out-of-bounds Read vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause information leakage.
network
low complexity
huawei CWE-125
7.5
7.5
2022-10-14 CVE-2022-38983 Use After Free vulnerability in Huawei Emui and Harmonyos
The BT Hfp Client module has a Use-After-Free (UAF) vulnerability.Successful exploitation of this vulnerability may result in arbitrary code execution.
network
low complexity
huawei CWE-416
critical
 9.8
9.8
2022-10-14 CVE-2022-41577 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitation of this vulnerability may cause out-of-bounds read in the kernel, which affects the device confidentiality and availability.
local
low complexity
huawei CWE-125
7.1
7.1
2022-10-14 CVE-2022-41578 Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos
The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information.
network
low complexity
huawei CWE-787
critical
 9.8
9.8
2022-10-14 CVE-2022-41584 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting.
local
low complexity
huawei CWE-125
7.8
7.8
2022-10-14 CVE-2022-41585 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting.
local
low complexity
huawei CWE-125
7.8
7.8
2022-10-14 CVE-2022-41586 Unspecified vulnerability in Huawei Emui and Harmonyos
The communication framework module has a vulnerability of not truncating data properly.Successful exploitation of this vulnerability may affect data confidentiality.
network
low complexity
huawei
7.5
7.5