Vulnerabilities > Openharmony
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-02 | CVE-2023-43756 | Out-of-bounds Read vulnerability in Openharmony in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through out-of-bounds Read. | 5.5 |
| 2024-02-02 | CVE-2023-45734 | Out-of-bounds Write vulnerability in Openharmony 3.2.1/3.2.2/3.2.3 in OpenHarmony v3.2.4 and prior versions allow an adjacent attacker arbitrary code execution through out-of-bounds write. | 8.8 |
| 2024-02-02 | CVE-2023-49118 | Out-of-bounds Read vulnerability in Openharmony 3.2.1/3.2.2/3.2.3 in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through out-of-bounds Read. | 5.5 |
| 2024-02-02 | CVE-2024-0285 | Unspecified vulnerability in Openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input. | 5.5 |
| 2024-02-02 | CVE-2024-21845 | Integer Overflow or Wraparound vulnerability in Openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause heap overflow through integer overflow. | 7.8 |
| 2024-02-02 | CVE-2024-21851 | Integer Overflow or Wraparound vulnerability in Openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause heap overflow through integer overflow. | 7.8 |
| 2024-02-02 | CVE-2024-21860 | Use After Free vulnerability in Openharmony in OpenHarmony v4.0.0 and prior versions allow an adjacent attacker arbitrary code execution in any apps through use after free. | 8.8 |
| 2024-02-02 | CVE-2024-21863 | Unspecified vulnerability in Openharmony in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input. | 6.2 |
| 2024-01-02 | CVE-2023-47216 | Missing Release of Resource after Effective Lifetime vulnerability in Openharmony in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through occupy all resources | 5.5 |
| 2024-01-02 | CVE-2023-47857 | Use After Free vulnerability in Openharmony in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia camera crash through modify a released pointer. | 5.5 |