Vulnerabilities > Huawei > Harmonyos > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-16 | CVE-2022-39008 | Deserialization of Untrusted Data vulnerability in Huawei Emui and Harmonyos The NFC module has bundle serialization/deserialization vulnerabilities. | 9.1 |
| 2022-09-16 | CVE-2022-39007 | Unspecified vulnerability in Huawei Emui and Harmonyos The location module has a vulnerability of bypassing permission verification.Successful exploitation of this vulnerability may cause privilege escalation. | 9.8 |
| 2022-09-16 | CVE-2022-39002 | Double Free vulnerability in Huawei Emui, Harmonyos and Magic UI Double free vulnerability in the storage module. | 9.8 |
| 2022-09-16 | CVE-2022-39000 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup. | 9.8 |
| 2022-09-16 | CVE-2022-38999 | Unspecified vulnerability in Huawei Emui and Harmonyos The AOD module has the improper update of reference count vulnerability. | 9.8 |
| 2022-09-16 | CVE-2021-40017 | Improper Input Validation vulnerability in Huawei Emui and Harmonyos The HW_KEYMASTER module lacks the validity check of the key format. | 9.8 |
| 2022-08-10 | CVE-2022-37003 | Incorrect Default Permissions vulnerability in Huawei Emui, Harmonyos and Magic UI The AOD module has a vulnerability in permission assignment. | 9.8 |
| 2022-08-10 | CVE-2022-37002 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI The SystemUI module has a privilege escalation vulnerability. | 9.8 |
| 2022-07-12 | CVE-2022-34737 | Incorrect Default Permissions vulnerability in Huawei Emui, Harmonyos and Magic UI The application security module has a vulnerability in permission assignment. | 9.1 |
| 2022-06-13 | CVE-2021-40036 | Out-of-bounds Write vulnerability in Huawei Harmonyos The bone voice ID TA has a memory overwrite vulnerability. | 9.8 |