Vulnerabilities > Huawei > Harmonyos > High

DATE CVE VULNERABILITY TITLE RISK
2022-11-09 CVE-2022-44557 Unspecified vulnerability in Huawei Emui and Harmonyos
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files.
network
low complexity
huawei
7.5
2022-11-09 CVE-2022-44561 Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos
The preset launcher module has a permission verification vulnerability.
network
low complexity
huawei CWE-276
7.5
2022-11-08 CVE-2022-44556 Improper Input Validation vulnerability in Huawei Emui and Harmonyos
Missing parameter type validation in the DRM module.
network
low complexity
huawei CWE-20
7.5
2022-10-14 CVE-2022-38977 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.
network
low complexity
huawei CWE-787
7.5
2022-10-14 CVE-2022-38981 Out-of-bounds Read vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause information leakage.
network
low complexity
huawei CWE-125
7.5
2022-10-14 CVE-2022-38984 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality.
network
low complexity
huawei CWE-125
7.5
2022-10-14 CVE-2022-38985 Improper Input Validation vulnerability in Huawei Emui and Harmonyos
The facial recognition module has a vulnerability in input validation.Successful exploitation of this vulnerability may affect data confidentiality.
network
low complexity
huawei CWE-20
7.5
2022-10-14 CVE-2022-38998 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality.
network
low complexity
huawei CWE-125
7.5
2022-10-14 CVE-2022-39011 Unspecified vulnerability in Huawei Emui and Harmonyos
The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module.
network
low complexity
huawei
7.5
2022-10-14 CVE-2022-41576 Unspecified vulnerability in Huawei Emui and Harmonyos
The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices.
local
low complexity
huawei
7.8