Vulnerabilities > Huawei > Harmonyos > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-07-05 CVE-2023-3455 Exposure of Resource to Wrong Sphere vulnerability in Huawei Emui and Harmonyos
Key management vulnerability on system.
network
low complexity
huawei CWE-668
critical
 9.1
9.1
2023-07-05 CVE-2021-46891 Incorrect Authorization vulnerability in Huawei Emui and Harmonyos
Vulnerability of incomplete read and write permission verification in the GPU module.
network
low complexity
huawei CWE-863
critical
 9.8
9.8
2023-07-05 CVE-2021-46890 Incorrect Authorization vulnerability in Huawei Emui and Harmonyos
Vulnerability of incomplete read and write permission verification in the GPU module.
network
low complexity
huawei CWE-863
critical
 9.8
9.8
2023-05-26 CVE-2022-48479 Out-of-bounds Read vulnerability in Huawei Harmonyos 2.0
The facial recognition TA of some products has the out-of-bounds memory read vulnerability.
network
low complexity
huawei CWE-125
critical
 9.8
9.8
2023-05-26 CVE-2022-48478 Unspecified vulnerability in Huawei Harmonyos 2.0
The facial recognition TA of some products lacks memory length verification.
network
low complexity
huawei
critical
 9.8
9.8
2023-04-16 CVE-2022-48312 Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos
The HwPCAssistant module has the out-of-bounds read/write vulnerability.
network
low complexity
huawei CWE-787
critical
 9.1
9.1
2023-03-27 CVE-2022-48353 Unspecified vulnerability in Huawei Emui and Harmonyos
Some smartphones have configuration issues.
network
low complexity
huawei
critical
 9.8
9.8
2023-03-27 CVE-2022-48349 Unspecified vulnerability in Huawei Emui and Harmonyos
The control component has a spoofing vulnerability.
network
low complexity
huawei
critical
 9.1
9.1
2023-03-27 CVE-2022-48348 Unspecified vulnerability in Huawei Emui and Harmonyos
The MediaProvider module has a vulnerability of unauthorized data read.
network
low complexity
huawei
critical
 9.1
9.1
2023-02-09 CVE-2022-48290 Unspecified vulnerability in Huawei Harmonyos 3.0.0
The phone-PC collaboration module has a logic bypass vulnerability.
network
low complexity
huawei
critical
 9.1
9.1