Total
276 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-22254 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
A permission bypass vulnerability exists when the NFC CAs access the TEE.Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2021-40048 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability. | |||||
CVE-2022-31757 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The setting module has a vulnerability of improper use of APIs. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2021-22434 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
There is a memory address out of bounds vulnerability in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||||
CVE-2022-22256 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2021-46789 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
Configuration defects in the secure OS module. Successful exploitation of this vulnerability can affect availability. | |||||
CVE-2022-22253 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability. | |||||
CVE-2021-22430 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
There is a logic bypass vulnerability in smartphones. Successful exploitation of this vulnerability may cause code injection. | |||||
CVE-2021-22433 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||||
CVE-2021-40050 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this vulnerability may cause stack overflow. | |||||
CVE-2021-22394 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 6.4 MEDIUM | 9.1 CRITICAL |
There is a buffer overflow vulnerability in smartphones. Successful exploitation of this vulnerability may cause DoS of the apps during Multi-Screen Collaboration. | |||||
CVE-2021-40054 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
There is an integer underflow vulnerability in the atcmdserver module. Successful exploitation of this vulnerability may affect integrity. | |||||
CVE-2021-40015 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 1.9 LOW | 4.7 MEDIUM |
There is a race condition vulnerability in the binder driver subsystem in the kernel.Successful exploitation of this vulnerability may affect kernel stability. | |||||
CVE-2021-22437 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 6.9 MEDIUM | 7.0 HIGH |
There is a software integer overflow leading to a TOCTOU condition in smartphones. Successful exploitation of this vulnerability may cause random address access. | |||||
CVE-2021-40065 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The communication module has a service logic error vulnerability.Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2021-22489 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service availability. | |||||
CVE-2021-40063 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
There is an improper access control vulnerability in the video module. Successful exploitation of this vulnerability may affect confidentiality. | |||||
CVE-2021-46811 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 5.3 MEDIUM |
HwSEServiceAPP has a vulnerability in permission management. Successful exploitation of this vulnerability may cause disclosure of the Card Production Life Cycle (CPLC) information. | |||||
CVE-2021-37103 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 2.1 LOW | 5.5 MEDIUM |
There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality. | |||||
CVE-2022-31758 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 1.9 LOW | 4.7 MEDIUM |
The kernel module has the race condition vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. |