Vulnerabilities > Huawei > Harmonyos
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-03 | CVE-2021-37132 | Incorrect Default Permissions vulnerability in Huawei Harmonyos PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability .Successful exploitation of this vulnerability may cause that Third-party apps can obtain the complete list of Harmony apps without permission. | 5.3 |
| 2022-01-03 | CVE-2021-37133 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2022-01-03 | CVE-2021-37134 | Race Condition vulnerability in Huawei Harmonyos Location-related APIs exists a Race Condition vulnerability.Successful exploitation of this vulnerability may use Higher Permissions for invoking the interface of location-related components. | 8.1 |
| 2022-01-03 | CVE-2021-39966 | Missing Initialization of Resource vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Uninitialized AOD driver structure in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2022-01-03 | CVE-2021-39967 | Incorrect Default Permissions vulnerability in Huawei Emui, Harmonyos and Magic UI There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast permission settings in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2022-01-03 | CVE-2021-39968 | Unspecified vulnerability in Huawei Harmonyos Changlian Blocklist has a Business Logic Errors vulnerability .Successful exploitation of this vulnerability may expand the attack surface of the message class. | 7.5 |
| 2022-01-03 | CVE-2021-39969 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2022-01-03 | CVE-2021-39970 | Path Traversal vulnerability in Huawei Harmonyos HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this vulnerability may create any file with the system app permission. | 7.5 |
| 2022-01-03 | CVE-2021-39971 | Exposure of Resource to Wrong Sphere vulnerability in Huawei Harmonyos Password vault has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability could compromise confidentiality. | 7.5 |
| 2022-01-03 | CVE-2021-39972 | Information Exposure vulnerability in Huawei Harmonyos MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could compromise confidentiality. | 7.5 |