Vulnerabilities > Openatom > Openharmony

DATE CVE VULNERABILITY TITLE RISK
2024-01-02 CVE-2023-48360 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer.
local
low complexity
openatom CWE-416
5.5
5.5
2024-01-02 CVE-2023-49135 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer.
local
low complexity
openatom CWE-416
5.5
5.5
2024-01-02 CVE-2023-49142 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia audio crash through modify a released pointer.
local
low complexity
openatom CWE-416
3.3
3.3
2023-11-20 CVE-2023-3116 Incorrect Default Permissions vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information or rewrite sensitive file through incorrect default permissions.
local
low complexity
openatom CWE-276
7.1
7.1
2023-11-20 CVE-2023-42774 Incorrect Default Permissions vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information through incorrect default permissions.
local
low complexity
openatom CWE-276
5.5
5.5
2023-11-20 CVE-2023-43612 Improper Preservation of Permissions vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary file read and write through improper preservation of permissions.
local
low complexity
openatom CWE-281
7.8
7.8
2023-11-20 CVE-2023-46100 Use of Uninitialized Resource vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker get sensitive buffer information through use of uninitialized resource.
local
low complexity
openatom CWE-908
5.5
5.5
2023-11-20 CVE-2023-46705 Type Confusion vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker causes system information leak through type confusion.
local
low complexity
openatom CWE-843
5.5
5.5
2023-11-20 CVE-2023-47217 Classic Buffer Overflow vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through buffer overflow.
local
low complexity
openatom CWE-120
5.5
5.5
2023-11-20 CVE-2023-6045 Type Confusion vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through type confusion.
local
low complexity
openatom CWE-843
7.8
7.8