Vulnerabilities > Openatom > Openharmony > 3.0.2

DATE CVE VULNERABILITY TITLE RISK
2024-12-03 CVE-2024-10074 Unspecified vulnerability in Openatom Openharmony
in OpenHarmony v4.1.1 and prior versions allow a local attacker cause the common permission is upgraded to root through use after free.
local
low complexity
openatom
7.8
7.8
2024-12-03 CVE-2024-12082 Insecure Storage of Sensitive Information vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
local
low complexity
openatom CWE-922
5.5
5.5
2024-12-03 CVE-2024-9978 Out-of-bounds Read vulnerability in Openatom Openharmony
in OpenHarmony v4.1.1 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
local
low complexity
openatom CWE-125
5.5
5.5
2024-05-07 CVE-2024-23808 NULL Pointer Dereference vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free or cause DOS through NULL pointer dereference.
local
low complexity
openatom CWE-476
7.8
7.8
2024-05-07 CVE-2024-27217 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.
local
low complexity
openatom CWE-416
7.8
7.8
2024-05-07 CVE-2024-31078 NULL Pointer Dereference vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL pointer dereference.
local
low complexity
openatom CWE-476
5.5
5.5
2024-05-07 CVE-2024-3757 Integer Overflow or Wraparound vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through integer overflow.
local
low complexity
openatom CWE-190
5.5
5.5
2024-05-07 CVE-2024-3758 Out-of-bounds Write vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through heap buffer overflow.
local
low complexity
openatom CWE-787
7.8
7.8
2024-05-07 CVE-2024-3759 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through use after free.
local
low complexity
openatom CWE-416
7.8
7.8
2024-04-02 CVE-2024-21834 Type Confusion vulnerability in Openatom Openharmony
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type confusion.
local
low complexity
openatom CWE-843
5.5
5.5