Total
276 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-40057 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
There is a heap-based and stack-based buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability may affect availability. | |||||
CVE-2022-22252 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
The DFX module has a UAF vulnerability.Successful exploitation of this vulnerability may affect system stability. | |||||
CVE-2021-22432 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access. | |||||
CVE-2021-40064 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
There is a heap-based buffer overflow vulnerability in system components. Successful exploitation of this vulnerability may affect system stability. | |||||
CVE-2021-40047 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.8 HIGH | 7.5 HIGH |
There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity. | |||||
CVE-2021-22319 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause integer overflows. | |||||
CVE-2021-22429 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 10.0 HIGH | 9.8 CRITICAL |
There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||||
CVE-2022-31754 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
Logical defects in code implementation in some products. Successful exploitation of this vulnerability may affect the availability of some features. | |||||
CVE-2022-31752 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 2.1 LOW | 5.5 MEDIUM |
Missing authorization vulnerability in the system components. Successful exploitation of this vulnerability will affect confidentiality. | |||||
CVE-2022-31761 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
Configuration defects in the secure OS module. Successful exploitation of this vulnerability will affect confidentiality. | |||||
CVE-2021-40045 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 2.1 LOW | 5.5 MEDIUM |
There is a vulnerability of signature verification mechanism failure in system upgrade through recovery mode.Successful exploitation of this vulnerability may affect service confidentiality. | |||||
CVE-2021-22448 | 1 Huawei | 2 Emui, Magic Ui | 2023-12-10 | 6.4 MEDIUM | 9.1 CRITICAL |
There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause unauthorized read and write of some files. | |||||
CVE-2022-31762 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 4.6 MEDIUM | 7.8 HIGH |
The AMS module has a vulnerability in input validation. Successful exploitation of this vulnerability may cause privilege escalation. | |||||
CVE-2021-40055 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 7.1 HIGH | 5.9 MEDIUM |
There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity. | |||||
CVE-2022-31759 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 2.1 LOW | 5.5 MEDIUM |
AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this vulnerability may affect system availability. | |||||
CVE-2021-40049 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization. | |||||
CVE-2022-31760 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 6.4 MEDIUM | 9.1 CRITICAL |
Dialog boxes can still be displayed even if the screen is locked in carrier-customized USSD services. Successful exploitation of this vulnerability may affect data integrity and confidentiality. | |||||
CVE-2022-31755 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 2.1 LOW | 5.5 MEDIUM |
The communication module has a vulnerability of improper permission preservation. Successful exploitation of this vulnerability may affect system availability. | |||||
CVE-2022-31751 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 4.9 MEDIUM | 5.5 MEDIUM |
The kernel emcom module has multi-thread contention. Successful exploitation of this vulnerability may affect system availability. | |||||
CVE-2021-46814 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
The video framework has an out-of-bounds memory read/write vulnerability. Successful exploitation of this vulnerability may affect system availability. |