Vulnerabilities > Openatom > Openharmony > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-38386 Out-of-bounds Write vulnerability in Openatom Openharmony 4.0
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
local
low complexity
openatom CWE-787
7.8
7.8
2024-09-02 CVE-2024-39775 Out-of-bounds Read vulnerability in Openatom Openharmony 4.0
in OpenHarmony v4.1.0 and prior versions allow a remote attacker cause information leak through out-of-bounds Read.
network
low complexity
openatom CWE-125
7.5
7.5
2024-09-02 CVE-2024-39816 Out-of-bounds Write vulnerability in Openatom Openharmony 4.0
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
local
low complexity
openatom CWE-787
7.8
7.8
2024-09-02 CVE-2024-41157 Use After Free vulnerability in Openatom Openharmony 4.0
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.
local
low complexity
openatom CWE-416
7.8
7.8
2024-09-02 CVE-2024-41160 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.
local
low complexity
openatom CWE-416
7.8
7.8
2024-02-02 CVE-2023-45734 Out-of-bounds Write vulnerability in Openatom Openharmony
in OpenHarmony v3.2.4 and prior versions allow an adjacent attacker arbitrary code execution through out-of-bounds write.
low complexity
openatom CWE-787
8.8
8.8
2024-02-02 CVE-2024-21845 Integer Overflow or Wraparound vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause heap overflow through integer overflow.
local
low complexity
openatom CWE-190
7.8
7.8
2024-02-02 CVE-2024-21851 Integer Overflow or Wraparound vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause heap overflow through integer overflow.
local
low complexity
openatom CWE-190
7.8
7.8
2024-02-02 CVE-2024-21860 Use After Free vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow an adjacent attacker arbitrary code execution in any apps through use after free.
low complexity
openatom CWE-416
8.8
8.8
2023-11-20 CVE-2023-3116 Incorrect Default Permissions vulnerability in Openatom Openharmony
in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information or rewrite sensitive file through incorrect default permissions.
local
low complexity
openatom CWE-276
7.1
7.1