Vulnerabilities > Openatom > Openharmony > 3.1.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-08 | CVE-2024-39806 | Out-of-bounds Read vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read. | 5.5 |
| 2024-10-08 | CVE-2024-39831 | Use After Free vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 allow a local attacker with high privileges arbitrary code execution in pre-installed apps through use after free. | 6.7 |
| 2024-10-08 | CVE-2024-43696 | Memory Leak vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS by memory leak. | 5.5 |
| 2024-10-08 | CVE-2024-43697 | Unspecified vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through improper input. | 5.5 |
| 2024-10-08 | CVE-2024-45382 | Out-of-bounds Write vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through out-of-bounds write. | 5.5 |
| 2024-09-02 | CVE-2024-41160 | Use After Free vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free. | 7.8 |
| 2024-07-02 | CVE-2024-31071 | Type Confusion vulnerability in Openatom Openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion. | 3.3 |
| 2024-07-02 | CVE-2024-36243 | Out-of-bounds Write vulnerability in Openatom Openharmony in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write. | 9.8 |
| 2024-07-02 | CVE-2024-36260 | Out-of-bounds Write vulnerability in Openatom Openharmony in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write. | 9.8 |
| 2024-07-02 | CVE-2024-36278 | Type Confusion vulnerability in Openatom Openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion. | 3.3 |