Vulnerabilities > Huawei > Harmonyos

DATE CVE VULNERABILITY TITLE RISK
2022-02-09 CVE-2021-40045 Improper Verification of Cryptographic Signature vulnerability in Huawei Emui, Harmonyos and Magic UI
There is a vulnerability of signature verification mechanism failure in system upgrade through recovery mode.Successful exploitation of this vulnerability may affect service confidentiality.
local
low complexity
huawei CWE-347
5.5
5.5
2022-01-10 CVE-2021-39996 Out-of-bounds Write vulnerability in Huawei Emui, Harmonyos and Magic UI
There is a Heap-based buffer overflow vulnerability with the NFC module in smartphones.
network
low complexity
huawei CWE-787
critical
 9.8
9.8
2022-01-10 CVE-2021-39998 Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI
There is Vulnerability of APIs being concurrently called for multiple times in HwConnectivityExService a in smartphones.
network
low complexity
huawei
7.5
7.5
2022-01-10 CVE-2021-40000 Out-of-bounds Write vulnerability in Huawei Harmonyos
The Bluetooth module has an out-of-bounds write vulnerability.
low complexity
huawei CWE-787
8.8
8.8
2022-01-10 CVE-2021-40001 Path Traversal vulnerability in Huawei Harmonyos
The CaasKit module has a path traversal vulnerability.
network
low complexity
huawei CWE-22
5.3
5.3
2022-01-10 CVE-2021-40002 Out-of-bounds Write vulnerability in Huawei Harmonyos
The Bluetooth module has an out-of-bounds write vulnerability.
low complexity
huawei CWE-787
8.8
8.8
2022-01-10 CVE-2021-40003 Path Traversal vulnerability in Huawei Harmonyos
HwPCAssistant has a path traversal vulnerability.
network
low complexity
huawei CWE-22
5.3
5.3
2022-01-10 CVE-2021-40004 Incorrect Default Permissions vulnerability in Huawei Harmonyos
The cellular module has a vulnerability in permission management.
network
low complexity
huawei CWE-276
7.5
7.5
2022-01-10 CVE-2021-40005 Unspecified vulnerability in Huawei Harmonyos
The distributed data service component has a vulnerability in data access control.
network
low complexity
huawei
7.5
7.5
2022-01-10 CVE-2021-40006 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Huawei Harmonyos 2.0
Vulnerability of design defects in the security algorithm component.
low complexity
huawei CWE-327
4.6
4.6