Vulnerabilities > Openatom > Openharmony

DATE CVE VULNERABILITY TITLE RISK
2024-07-02 CVE-2024-31071 Type Confusion vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion.
local
low complexity
openatom CWE-843
3.3
3.3
2024-07-02 CVE-2024-36243 Out-of-bounds Write vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write.
network
low complexity
openatom CWE-787
critical
 9.8
9.8
2024-07-02 CVE-2024-36260 Out-of-bounds Write vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
network
low complexity
openatom CWE-787
critical
 9.8
9.8
2024-07-02 CVE-2024-36278 Type Confusion vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion.
local
low complexity
openatom CWE-843
3.3
3.3
2024-07-02 CVE-2024-37030 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through use after free.
network
low complexity
openatom CWE-416
critical
 9.8
9.8
2024-07-02 CVE-2024-37077 Out-of-bounds Write vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
network
low complexity
openatom CWE-787
critical
 9.8
9.8
2024-07-02 CVE-2024-37185 Out-of-bounds Write vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
network
low complexity
openatom CWE-787
critical
 9.8
9.8
2024-05-07 CVE-2024-23808 NULL Pointer Dereference vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free or cause DOS through NULL pointer dereference.
local
low complexity
openatom CWE-476
7.8
7.8
2024-05-07 CVE-2024-27217 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.
local
low complexity
openatom CWE-416
7.8
7.8
2024-05-07 CVE-2024-31078 NULL Pointer Dereference vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL pointer dereference.
local
low complexity
openatom CWE-476
5.5
5.5