Vulnerabilities > Huawei
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-11 | CVE-2021-46740 | Improper Authentication vulnerability in Huawei Emui and Harmonyos The device authentication service module has a defect vulnerability introduced in the design process.Successful exploitation of this vulnerability may affect data confidentiality. | 7.5 |
| 2022-04-11 | CVE-2021-46742 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of this vulnerability may affect the availability. | 9.1 |
| 2022-04-11 | CVE-2022-22253 | Improper Validation of Integrity Check Value vulnerability in Huawei Emui, Harmonyos and Magic UI The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability. | 7.5 |
| 2022-04-11 | CVE-2022-22254 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI A permission bypass vulnerability exists when the NFC CAs access the TEE.Successful exploitation of this vulnerability may affect data confidentiality. | 7.5 |
| 2022-04-11 | CVE-2022-22255 | Unspecified vulnerability in Huawei Emui and Harmonyos The application framework has a common DoS vulnerability.Successful exploitation of this vulnerability may affect the availability. | 7.5 |
| 2022-04-11 | CVE-2022-22256 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality. | 7.5 |
| 2022-04-11 | CVE-2022-22257 | Improper Privilege Management vulnerability in Huawei Emui, Harmonyos and Magic UI The customization framework has a vulnerability of improper permission control.Successful exploitation of this vulnerability may affect data integrity. | 7.5 |
| 2022-04-11 | CVE-2022-22258 | Unspecified vulnerability in Huawei Emui, Harmonyos and Magic UI The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege. | 9.8 |
| 2022-03-11 | CVE-2021-33658 | Missing Authentication for Critical Function vulnerability in Huawei Atune 0.3/0.8 atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. | 7.8 |
| 2022-03-10 | CVE-2021-40047 | Memory Leak vulnerability in Huawei Emui, Harmonyos and Magic UI There is a vulnerability of memory not being released after effective lifetime in the Bastet module. | 7.5 |