Vulnerabilities > Huawei > High

DATE CVE VULNERABILITY TITLE RISK
2022-11-08 CVE-2022-44556 Improper Input Validation vulnerability in Huawei Emui and Harmonyos
Missing parameter type validation in the DRM module.
network
low complexity
huawei CWE-20
7.5
2022-10-14 CVE-2022-38977 Out-of-bounds Write vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.
network
low complexity
huawei CWE-787
7.5
2022-10-14 CVE-2022-38981 Out-of-bounds Read vulnerability in Huawei Harmonyos 2.0/2.1
The HwAirlink module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause information leakage.
network
low complexity
huawei CWE-125
7.5
2022-10-14 CVE-2022-38984 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality.
network
low complexity
huawei CWE-125
7.5
2022-10-14 CVE-2022-38985 Improper Input Validation vulnerability in Huawei Emui and Harmonyos
The facial recognition module has a vulnerability in input validation.Successful exploitation of this vulnerability may affect data confidentiality.
network
low complexity
huawei CWE-20
7.5
2022-10-14 CVE-2022-38998 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality.
network
low complexity
huawei CWE-125
7.5
2022-10-14 CVE-2022-39011 Unspecified vulnerability in Huawei Emui and Harmonyos
The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module.
network
low complexity
huawei
7.5
2022-10-14 CVE-2022-41576 Unspecified vulnerability in Huawei Emui and Harmonyos
The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices.
local
low complexity
huawei
7.8
2022-10-14 CVE-2022-41577 Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos
The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitation of this vulnerability may cause out-of-bounds read in the kernel, which affects the device confidentiality and availability.
local
low complexity
huawei CWE-125
7.1
2022-10-14 CVE-2022-41582 Unspecified vulnerability in Huawei Emui and Harmonyos
The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability.
network
low complexity
huawei
7.5