Vulnerabilities > Huawei > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-09-04 CVE-2024-45443 Path Traversal vulnerability in Huawei Emui and Harmonyos
Directory traversal vulnerability in the cust module Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
network
low complexity
huawei CWE-22
critical
 9.1
9.1
2024-01-16 CVE-2023-52101 Unspecified vulnerability in Huawei Emui and Harmonyos
Component exposure vulnerability in the Wi-Fi module.
network
low complexity
huawei
critical
 9.1
9.1
2024-01-16 CVE-2023-52103 Classic Buffer Overflow vulnerability in Huawei Emui and Harmonyos
Buffer overflow vulnerability in the FLP module.
network
low complexity
huawei CWE-120
critical
 9.8
9.8
2024-01-16 CVE-2023-52106 Unspecified vulnerability in Huawei Harmonyos 4.0.0
Vulnerability of permission verification for APIs in the DownloadProviderMain module. Impact: Successful exploitation of this vulnerability will affect integrity and availability.
network
low complexity
huawei
critical
 9.1
9.1
2023-12-06 CVE-2023-46773 Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos
Permission management vulnerability in the PMS module.
network
low complexity
huawei CWE-276
critical
 9.8
9.8
2023-11-08 CVE-2023-5801 Authentication Bypass by Spoofing vulnerability in Huawei Emui and Harmonyos
Vulnerability of identity verification being bypassed in the face unlock module.
network
low complexity
huawei CWE-290
critical
 9.1
9.1
2023-10-11 CVE-2023-44105 Improper Privilege Management vulnerability in Huawei Emui and Harmonyos
Vulnerability of permissions not being strictly verified in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally.
network
low complexity
huawei CWE-269
critical
 9.8
9.8
2023-10-11 CVE-2023-44107 Unspecified vulnerability in Huawei Harmonyos 2.1.0
Vulnerability of defects introduced in the design process in the screen projection module.Successful exploitation of this vulnerability may affect service availability and integrity.
network
low complexity
huawei
critical
 9.1
9.1
2023-10-11 CVE-2023-44116 Missing Authentication for Critical Function vulnerability in Huawei Emui and Harmonyos
Vulnerability of access permissions not being strictly verified in the APPWidget module.Successful exploitation of this vulnerability may cause some apps to run without being authorized.
network
low complexity
huawei CWE-306
critical
 9.8
9.8
2023-10-11 CVE-2023-44118 Unspecified vulnerability in Huawei Emui and Harmonyos
Vulnerability of undefined permissions in the MeeTime module.Successful exploitation of this vulnerability will affect availability and confidentiality.
network
low complexity
huawei
critical
 9.1
9.1