Vulnerabilities > Huawei > Harmonyos > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-10 | CVE-2021-40006 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Huawei Harmonyos 2.0 Vulnerability of design defects in the security algorithm component. | 4.6 |
| 2022-01-10 | CVE-2021-40009 | Out-of-bounds Write vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Out-of-bounds write vulnerability in the AOD module in smartphones. | 5.3 |
| 2022-01-10 | CVE-2021-40037 | Type Confusion vulnerability in Huawei Emui, Harmonyos and Magic UI There is a Vulnerability of accessing resources using an incompatible type (type confusion) in the MPTCP subsystem in smartphones. | 5.5 |
| 2022-01-03 | CVE-2021-37112 | Exposure of Resource to Wrong Sphere vulnerability in Huawei Harmonyos Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak. | 5.3 |
| 2022-01-03 | CVE-2021-37114 | Out-of-bounds Read vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. | 5.3 |
| 2022-01-03 | CVE-2021-37118 | Improper Handling of Exceptional Conditions vulnerability in Huawei Harmonyos The HwNearbyMain module has a Improper Handling of Exceptional Conditions vulnerability.Successful exploitation of this vulnerability may lead to message leak. | 5.3 |
| 2022-01-03 | CVE-2021-37132 | Incorrect Default Permissions vulnerability in Huawei Harmonyos PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability .Successful exploitation of this vulnerability may cause that Third-party apps can obtain the complete list of Harmony apps without permission. | 5.3 |
| 2022-01-03 | CVE-2021-39980 | Information Exposure vulnerability in Huawei Harmonyos 2.0 Telephony application has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could lead to sensitive information disclosure. | 5.3 |
| 2022-01-03 | CVE-2021-39981 | Unspecified vulnerability in Huawei Harmonyos 2.0 Chang Lian application has a vulnerability which can be maliciously exploited to hide the calling number.Successful exploitation of this vulnerability allows you to make an anonymous call. | 5.3 |
| 2021-12-08 | CVE-2021-37039 | Improper Input Validation vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Input verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause Bluetooth DoS. | 6.5 |