Vulnerabilities > Huawei > Harmonyos > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-09 CVE-2022-48300 Missing Authentication for Critical Function vulnerability in Huawei Emui and Harmonyos
The WMS module lacks the authentication mechanism in some APIs.
network
low complexity
huawei CWE-306
7.5
2023-02-09 CVE-2022-48301 Improper Preservation of Permissions vulnerability in Huawei Emui and Harmonyos
The bundle management module lacks permission verification in some APIs.
network
low complexity
huawei CWE-281
7.5
2023-02-09 CVE-2022-48302 Unspecified vulnerability in Huawei Emui and Harmonyos
The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality.
network
low complexity
huawei
7.5
2023-01-06 CVE-2021-46867 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HW_KEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bounds memory access.
network
low complexity
huawei CWE-125
7.5
2023-01-06 CVE-2021-46868 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HW_KEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bounds memory access.
network
low complexity
huawei CWE-125
7.5
2023-01-06 CVE-2022-46761 Unspecified vulnerability in Huawei Emui and Harmonyos
The system has a vulnerability that may cause dynamic hiding and restoring of app icons.Successful exploitation of this vulnerability may cause malicious hiding of app icons.
network
low complexity
huawei
7.5
2023-01-06 CVE-2022-46762 Unspecified vulnerability in Huawei Emui and Harmonyos
The memory management module has a logic bypass vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.
network
low complexity
huawei
7.5
2023-01-06 CVE-2022-47975 Double Free vulnerability in Huawei Emui and Harmonyos
The DUBAI module has a double free vulnerability.
network
low complexity
huawei CWE-415
7.5
2023-01-06 CVE-2022-47976 Unspecified vulnerability in Huawei Emui and Harmonyos
The DMSDP module of the distributed hardware has a vulnerability that may cause imposter control connections.Successful exploitation of this vulnerability may disconnect normal service connections.
network
low complexity
huawei
7.5
2022-12-20 CVE-2021-46856 Path Traversal vulnerability in Huawei Emui and Harmonyos
The multi-screen collaboration module has a path traversal vulnerability.
network
low complexity
huawei CWE-22
7.5