Vulnerabilities > Huawei > Harmonyos

DATE CVE VULNERABILITY TITLE RISK
2022-11-09 CVE-2022-44562 Unspecified vulnerability in Huawei Emui and Harmonyos
The system framework layer has a vulnerability of serialization/deserialization mismatch.
network
low complexity
huawei
critical
 9.8
9.8
2022-11-09 CVE-2022-44563 Race Condition vulnerability in Huawei Emui and Harmonyos
There is a race condition vulnerability in SD upgrade mode.
network
high complexity
huawei CWE-362
5.9
5.9
2022-11-08 CVE-2022-44556 Improper Input Validation vulnerability in Huawei Emui and Harmonyos
Missing parameter type validation in the DRM module.
network
low complexity
huawei CWE-20
7.5
7.5
2022-10-14 CVE-2021-46839 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HW_KEYMASTER module has a vulnerability of missing bounds check on length.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.
network
low complexity
huawei CWE-125
critical
 9.1
9.1
2022-10-14 CVE-2021-46840 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HW_KEYMASTER module has an out-of-bounds access vulnerability in parameter set verification.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.
network
low complexity
huawei CWE-125
critical
 9.1
9.1
2022-10-14 CVE-2022-38977 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.
network
low complexity
huawei CWE-787
7.5
7.5
2022-10-14 CVE-2022-38980 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability in processing data packets of the proprietary protocol.Successful exploitation of this vulnerability may allow attackers to obtain process control permissions.
network
low complexity
huawei CWE-787
critical
 9.8
9.8
2022-10-14 CVE-2022-38981 Out-of-bounds Read vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause information leakage.
network
low complexity
huawei CWE-125
7.5
7.5
2022-10-14 CVE-2022-38982 Unspecified vulnerability in Huawei Harmonyos 2.0
The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked.
network
low complexity
huawei
critical
 9.8
9.8
2022-10-14 CVE-2022-38983 Use After Free vulnerability in Huawei Emui and Harmonyos
The BT Hfp Client module has a Use-After-Free (UAF) vulnerability.Successful exploitation of this vulnerability may result in arbitrary code execution.
network
low complexity
huawei CWE-416
critical
 9.8
9.8