Vulnerabilities > Huawei > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-02-25 CVE-2021-22479 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Harmonyos
The interface of a certain HarmonyOS module has an invalid address access vulnerability.
local
low complexity
huawei CWE-119
5.5
2022-02-25 CVE-2021-37103 Incorrect Default Permissions vulnerability in Huawei Emui and Magic UI
There is an improper permission management vulnerability in the Wallet apps.
local
low complexity
huawei CWE-276
5.5
2022-02-09 CVE-2021-37107 Out-of-bounds Write vulnerability in Huawei Emui 12.0.0
There is an improper memory access permission configuration on ACPU.Successful exploitation of this vulnerability may cause out-of-bounds access.
local
low complexity
huawei CWE-787
5.5
2022-02-09 CVE-2021-37115 Unspecified vulnerability in Huawei Emui 12.0.0
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.
local
low complexity
huawei
5.5
2022-02-09 CVE-2021-39986 Unspecified vulnerability in Huawei Emui 12.0.0
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.
local
low complexity
huawei
5.5
2022-02-09 CVE-2021-39991 Unspecified vulnerability in Huawei Emui 12.0.0
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.
local
low complexity
huawei
5.5
2022-02-09 CVE-2021-40015 Race Condition vulnerability in Huawei Emui, Harmonyos and Magic UI
There is a race condition vulnerability in the binder driver subsystem in the kernel.Successful exploitation of this vulnerability may affect kernel stability.
local
high complexity
huawei CWE-362
4.7
2022-02-09 CVE-2021-40045 Improper Verification of Cryptographic Signature vulnerability in Huawei Emui, Harmonyos and Magic UI
There is a vulnerability of signature verification mechanism failure in system upgrade through recovery mode.Successful exploitation of this vulnerability may affect service confidentiality.
local
low complexity
huawei CWE-347
5.5
2022-01-31 CVE-2021-40033 Unspecified vulnerability in Huawei products
There is an information exposure vulnerability on several Huawei Products.
local
low complexity
huawei
5.5
2022-01-31 CVE-2021-40042 Release of Invalid Pointer or Reference vulnerability in Huawei products
There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal.
network
low complexity
huawei CWE-763
6.5