Vulnerabilities > Huawei > Harmonyos > High

DATE CVE VULNERABILITY TITLE RISK
2022-01-03 CVE-2021-39970 Path Traversal vulnerability in Huawei Harmonyos
HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this vulnerability may create any file with the system app permission.
network
low complexity
huawei CWE-22
7.5
2022-01-03 CVE-2021-39971 Exposure of Resource to Wrong Sphere vulnerability in Huawei Harmonyos
Password vault has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.
network
low complexity
huawei CWE-668
7.5
2022-01-03 CVE-2021-39972 Information Exposure vulnerability in Huawei Harmonyos
MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.
network
low complexity
huawei CWE-200
7.5
2022-01-03 CVE-2021-39973 NULL Pointer Dereference vulnerability in Huawei Emui, Harmonyos and Magic UI
There is a Null pointer dereference in Smartphones.Successful exploitation of this vulnerability may cause the kernel to break down.
network
low complexity
huawei CWE-476
7.5
2022-01-03 CVE-2021-39974 Out-of-bounds Read vulnerability in Huawei Emui, Harmonyos and Magic UI
There is an Out-of-bounds read in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
network
low complexity
huawei CWE-125
7.5
2022-01-03 CVE-2021-39975 Unspecified vulnerability in Huawei Harmonyos
Hilinksvc has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause denial of service attacks.
network
low complexity
huawei
7.5
2022-01-03 CVE-2021-39977 NULL Pointer Dereference vulnerability in Huawei Harmonyos
The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
network
low complexity
huawei CWE-476
7.5
2022-01-03 CVE-2021-39978 SQL Injection vulnerability in Huawei Harmonyos
Telephony application has a SQL Injection vulnerability.Successful exploitation of this vulnerability may cause privacy and security issues.
network
low complexity
huawei CWE-89
7.5
2022-01-03 CVE-2021-39983 Unspecified vulnerability in Huawei Harmonyos 2.0
The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
network
low complexity
huawei
7.5
2022-01-03 CVE-2021-39984 Out-of-bounds Read vulnerability in Huawei Harmonyos 2.0
Huawei idap module has a Out-of-bounds Read vulnerability.Successful exploitation of this vulnerability may cause Denial of Service.
network
low complexity
huawei CWE-125
7.5