Vulnerabilities > Huawei > Harmonyos > 3.0.0

DATE CVE VULNERABILITY TITLE RISK
2022-12-20 CVE-2022-41590 Improper Authentication vulnerability in Huawei Harmonyos 3.0.0
Some smartphones have authentication-related (including session management) vulnerabilities as the setup wizard is bypassed.
local
low complexity
huawei CWE-287
5.5
5.5
2022-12-20 CVE-2022-41591 Path Traversal vulnerability in Huawei Emui and Harmonyos
The backup module has a path traversal vulnerability.
network
low complexity
huawei CWE-22
7.5
7.5
2022-11-09 CVE-2022-44548 Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos
There is a vulnerability in permission verification during the Bluetooth pairing process.
low complexity
huawei CWE-276
4.3
4.3
2022-11-09 CVE-2022-44553 Unspecified vulnerability in Huawei Emui and Harmonyos
The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider.
network
low complexity
huawei
5.3
5.3
2022-11-09 CVE-2022-44555 Unspecified vulnerability in Huawei Emui and Harmonyos
The DDMP/ODMF module has a service hijacking vulnerability.
network
low complexity
huawei
7.5
7.5
2022-11-09 CVE-2022-44557 Unspecified vulnerability in Huawei Emui and Harmonyos
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files.
network
low complexity
huawei
7.5
7.5
2022-11-09 CVE-2022-44559 Deserialization of Untrusted Data vulnerability in Huawei Emui and Harmonyos
The AMS module has a vulnerability of serialization/deserialization mismatch.
network
low complexity
huawei CWE-502
critical
 9.8
9.8
2022-11-09 CVE-2022-44560 Unspecified vulnerability in Huawei Emui and Harmonyos
The launcher module has an Intent redirection vulnerability.
network
low complexity
huawei
5.3
5.3
2022-11-09 CVE-2022-44561 Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos
The preset launcher module has a permission verification vulnerability.
network
low complexity
huawei CWE-276
7.5
7.5
2022-11-09 CVE-2022-44562 Unspecified vulnerability in Huawei Emui and Harmonyos
The system framework layer has a vulnerability of serialization/deserialization mismatch.
network
low complexity
huawei
critical
 9.8
9.8