Total
593 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-1692 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality. | |||||
CVE-2022-48512 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 9.8 CRITICAL |
Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of this vulnerability may cause the image decoding feature to perform abnormally. | |||||
CVE-2022-48478 | 1 Huawei | 1 Harmonyos | 2023-12-10 | N/A | 9.8 CRITICAL |
The facial recognition TA of some products lacks memory length verification. Successful exploitation of this vulnerability may cause exceptions of the facial recognition service. | |||||
CVE-2022-48350 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
The HUAWEI Messaging app has a vulnerability of unauthorized file access. Successful exploitation of this vulnerability may affect confidentiality. | |||||
CVE-2023-3455 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 9.1 CRITICAL |
Key management vulnerability on system. Successful exploitation of this vulnerability may affect service availability and integrity. | |||||
CVE-2022-48314 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 6.5 MEDIUM |
The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality. | |||||
CVE-2023-1695 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally. | |||||
CVE-2023-1696 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availability. | |||||
CVE-2022-48348 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 9.1 CRITICAL |
The MediaProvider module has a vulnerability of unauthorized data read. Successful exploitation of this vulnerability may affect confidentiality and integrity. | |||||
CVE-2023-37242 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 9.8 CRITICAL |
Vulnerability of commands from the modem being intercepted in the atcmdserver module. Attackers may exploit this vulnerability to rewrite the non-volatile random-access memory (NVRAM), or facilitate the exploitation of other vulnerabilities. | |||||
CVE-2022-48508 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
Inappropriate authorization vulnerability in the system apps. Successful exploitation of this vulnerability may affect service integrity. | |||||
CVE-2023-26547 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.8 HIGH |
The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation. | |||||
CVE-2022-48509 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 5.9 MEDIUM |
Race condition vulnerability due to multi-thread access to mutually exclusive resources in Huawei Share. Successful exploitation of this vulnerability may cause the program to exit abnormally. | |||||
CVE-2023-37245 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 9.1 CRITICAL |
Buffer overflow vulnerability in the modem pinctrl module. Successful exploitation of this vulnerability may affect the integrity and availability of the modem. | |||||
CVE-2022-48361 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 5.3 MEDIUM |
The Always On Display (AOD) has a path traversal vulnerability in theme files. Successful exploitation of this vulnerability may cause a failure in reading AOD theme resources. | |||||
CVE-2023-1693 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality. | |||||
CVE-2022-48515 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
Vulnerability of inappropriate permission control in Nearby. Successful exploitation of this vulnerability may affect service confidentiality. | |||||
CVE-2022-48519 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality. | |||||
CVE-2021-46891 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 9.8 CRITICAL |
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability. | |||||
CVE-2021-46892 | 1 Huawei | 2 Emui, Harmonyos | 2023-12-10 | N/A | 7.5 HIGH |
Encryption bypass vulnerability in Maintenance mode. Successful exploitation of this vulnerability may affect service confidentiality. |