Total
140 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-21098 | 1 Openatom | 1 Openharmony | 2025-03-06 | N/A | 5.5 MEDIUM |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read bypass permission check.
|
|||||
| CVE-2025-21097 | 1 Openatom | 1 Openharmony | 2025-03-06 | N/A | 3.3 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through NULL pointer dereference.
|
|||||
| CVE-2025-21089 | 1 Openatom | 1 Openharmony | 2025-03-06 | N/A | 3.3 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.
|
|||||
| CVE-2025-20091 | 1 Openatom | 1 Openharmony | 2025-03-06 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-20042 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 5.5 MEDIUM |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read.
|
|||||
| CVE-2025-20024 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through integer overflow. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-20081 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-20021 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.3 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.
|
|||||
| CVE-2025-21084 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through through NULL pointer dereference.. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-24309 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-23414 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-23418 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.3 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.
|
|||||
| CVE-2025-23420 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-24301 | 1 Openatom | 1 Openharmony | 2025-03-04 | N/A | 3.8 LOW |
|
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
|
|||||
| CVE-2025-0302 | 1 Openatom | 1 Openharmony | 2025-02-11 | N/A | 5.5 MEDIUM |
|
in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow.
|
|||||
| CVE-2025-0303 | 1 Openatom | 1 Openharmony | 2025-02-11 | N/A | 8.8 HIGH |
|
in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through buffer overflow.
|
|||||
| CVE-2025-0304 | 1 Openatom | 1 Openharmony | 2025-02-11 | N/A | 8.8 HIGH |
|
in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.
|
|||||
| CVE-2024-28226 | 1 Openatom | 1 Openharmony | 2025-01-27 | N/A | 8.1 HIGH |
|
in OpenHarmony v4.0.0 and prior versions allow a remote attacker cause DOS through improper input.
|
|||||
| CVE-2024-24581 | 1 Openatom | 1 Openharmony | 2025-01-27 | N/A | 6.5 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution through out-of-bounds write.
|
|||||
| CVE-2024-22180 | 1 Openatom | 1 Openharmony | 2025-01-27 | N/A | 3.3 LOW |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through use after free.
|
|||||
| CVE-2024-22092 | 1 Openatom | 1 Openharmony | 2025-01-27 | N/A | 7.7 HIGH |
|
in OpenHarmony v3.2.4 and prior versions allow a remote attacker bypass permission verification to install apps, although these require user action.
|
|||||
| CVE-2024-28951 | 1 Openatom | 1 Openharmony | 2025-01-24 | N/A | 5.5 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.
|
|||||
| CVE-2024-21834 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 3.3 LOW |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type confusion.
|
|||||
| CVE-2024-22098 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 6.5 MEDIUM |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through use after free.
|
|||||
| CVE-2024-22177 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 3.3 LOW |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through get permission.
|
|||||
| CVE-2024-29074 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 6.5 MEDIUM |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through improper input.
|
|||||
| CVE-2024-29086 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 3.3 LOW |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause DOS through stack overflow.
|
|||||
| CVE-2024-23808 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 5.2 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free or cause DOS through NULL pointer dereference.
|
|||||
| CVE-2024-27217 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 6.5 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.
|
|||||
| CVE-2024-3757 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 3.3 LOW |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through integer overflow.
|
|||||
| CVE-2024-31078 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 3.3 LOW |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL pointer dereference.
|
|||||
| CVE-2024-3758 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 6.5 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through heap buffer overflow.
|
|||||
| CVE-2024-3759 | 1 Openatom | 1 Openharmony | 2025-01-02 | N/A | 6.5 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through use after free.
|
|||||
| CVE-2024-21816 | 1 Openatom | 1 Openharmony | 2024-12-16 | N/A | 4.0 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through improper preservation of permissions.
|
|||||
| CVE-2024-21826 | 1 Openatom | 1 Openharmony | 2024-12-16 | N/A | 4.3 MEDIUM |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak through insecure storage.
|
|||||
| CVE-2023-49602 | 1 Openatom | 1 Openharmony | 2024-12-16 | N/A | 2.9 LOW |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type confusion.
|
|||||
| CVE-2023-46708 | 1 Openatom | 1 Openharmony | 2024-12-16 | N/A | 4.3 MEDIUM |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through use after free.
|
|||||
| CVE-2023-25176 | 1 Openatom | 1 Openharmony | 2024-12-16 | N/A | 2.9 LOW |
|
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
|
|||||
| CVE-2024-9978 | 1 Openatom | 1 Openharmony | 2024-12-11 | N/A | 5.5 MEDIUM |
|
in OpenHarmony v4.1.1 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
|
|||||
| CVE-2024-12082 | 1 Openatom | 1 Openharmony | 2024-12-11 | N/A | 5.5 MEDIUM |
|
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
|
|||||