Vulnerabilities > Huawei > Harmonyos > High

DATE CVE VULNERABILITY TITLE RISK
2022-01-03 CVE-2021-37126 Path Traversal vulnerability in Huawei Harmonyos
Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability .Successful exploitation of this vulnerability may cause the directory is traversed.
network
low complexity
huawei CWE-22
7.5
2022-01-03 CVE-2021-37133 Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
network
low complexity
huawei
7.5
2022-01-03 CVE-2021-37134 Race Condition vulnerability in Huawei Harmonyos
Location-related APIs exists a Race Condition vulnerability.Successful exploitation of this vulnerability may use Higher Permissions for invoking the interface of location-related components.
network
high complexity
huawei CWE-362
8.1
2022-01-03 CVE-2021-39966 Missing Initialization of Resource vulnerability in Huawei Emui, Harmonyos and Magic UI
There is an Uninitialized AOD driver structure in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
network
low complexity
huawei CWE-909
7.5
2022-01-03 CVE-2021-39967 Incorrect Default Permissions vulnerability in Huawei Emui, Harmonyos and Magic UI
There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast permission settings in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
network
low complexity
huawei CWE-276
7.5
2022-01-03 CVE-2021-39968 Unspecified vulnerability in Huawei Harmonyos
Changlian Blocklist has a Business Logic Errors vulnerability .Successful exploitation of this vulnerability may expand the attack surface of the message class.
network
low complexity
huawei
7.5
2022-01-03 CVE-2021-39969 Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
network
low complexity
huawei
7.5
2022-01-03 CVE-2021-39970 Path Traversal vulnerability in Huawei Harmonyos
HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this vulnerability may create any file with the system app permission.
network
low complexity
huawei CWE-22
7.5
2022-01-03 CVE-2021-39971 Exposure of Resource to Wrong Sphere vulnerability in Huawei Harmonyos
Password vault has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.
network
low complexity
huawei CWE-668
7.5
2022-01-03 CVE-2021-39972 Information Exposure vulnerability in Huawei Harmonyos
MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.
network
low complexity
huawei CWE-200
7.5