Total
1028 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-42033 | 1 Huawei | 2 Emui, Harmonyos | 2025-09-18 | N/A | 6.9 MEDIUM |
|
Access control vulnerability in the security verification module
mpact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
|
|||||
| CVE-2024-42032 | 1 Huawei | 2 Emui, Harmonyos | 2025-09-18 | N/A | 4.4 MEDIUM |
|
Access permission verification vulnerability in the Contacts module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2024-39673 | 1 Huawei | 2 Emui, Harmonyos | 2025-09-18 | N/A | 6.8 MEDIUM |
|
Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-58276 | 1 Huawei | 2 Emui, Harmonyos | 2025-09-11 | N/A | 6.8 MEDIUM |
|
Permission verification vulnerability in the home screen module
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-58280 | 1 Huawei | 1 Harmonyos | 2025-09-11 | N/A | 8.4 HIGH |
|
Vulnerability of exposing object heap addresses in the Ark eTS module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-58281 | 1 Huawei | 1 Harmonyos | 2025-09-11 | N/A | 8.4 HIGH |
|
Out-of-bounds read vulnerability in the runtime interpreter module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-58296 | 1 Huawei | 1 Harmonyos | 2025-09-11 | N/A | 7.5 HIGH |
|
Race condition vulnerability in the audio module.
Impact: Successful exploitation of this vulnerability may affect function stability.
|
|||||
| CVE-2025-58313 | 1 Huawei | 1 Harmonyos | 2025-09-11 | N/A | 5.1 MEDIUM |
|
Race condition vulnerability in the device standby module.
Impact: Successful exploitation of this vulnerability may cause feature exceptions of the device standby module.
|
|||||
| CVE-2022-37003 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2025-09-08 | N/A | 9.8 CRITICAL |
|
The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files.
|
|||||
| CVE-2025-54608 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 6.2 MEDIUM |
|
Vulnerability that allows setting screen rotation direction without permission verification in the screen management module.
Impact: Successful exploitation of this vulnerability may cause device screen orientation to be arbitrarily set.
|
|||||
| CVE-2025-54655 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 8.1 HIGH |
|
Race condition vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality and integrity of the virtualization graphics module.
|
|||||
| CVE-2025-54607 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 7.7 HIGH |
|
Authentication management vulnerability in the ArkWeb module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-54606 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 7.3 HIGH |
|
Status verification vulnerability in the lock screen module.
Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
|
|||||
| CVE-2025-54622 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 8.3 HIGH |
|
Binding authentication bypass vulnerability in the devicemanager module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-54627 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 8.8 HIGH |
|
Out-of-bounds write vulnerability in the skia module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-54618 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 5.7 MEDIUM |
|
Permission control vulnerability in the distributed clipboard module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-54623 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 6.3 MEDIUM |
|
Out-of-bounds read vulnerability in the devicemanager module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54619 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 5.3 MEDIUM |
|
Iterator failure issue in the multi-mode input module.
Impact: Successful exploitation of this vulnerability may cause iterator failures and affect availability.
|
|||||
| CVE-2025-54620 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 5.5 MEDIUM |
|
Deserialization vulnerability of untrusted data in the ability module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54624 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 5.7 MEDIUM |
|
Unexpected injection event vulnerability in the multimodalinput module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54625 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 6.7 MEDIUM |
|
Race condition vulnerability in the kernel file system module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54631 | 1 Huawei | 1 Harmonyos | 2025-08-20 | N/A | 6.7 MEDIUM |
|
Vulnerability of insufficient data length verification in the partition module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54652 | 1 Huawei | 1 Harmonyos | 2025-08-18 | N/A | 8.4 HIGH |
|
Path traversal vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization module.
|
|||||
| CVE-2025-54653 | 1 Huawei | 1 Harmonyos | 2025-08-18 | N/A | 8.4 HIGH |
|
Path traversal vulnerability in the virtualization file module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization file module.
|
|||||
| CVE-2025-54645 | 1 Huawei | 1 Harmonyos | 2025-08-13 | N/A | 5.0 MEDIUM |
|
Out-of-bounds array access issue due to insufficient data verification in the location service module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54646 | 1 Huawei | 2 Emui, Harmonyos | 2025-08-13 | N/A | 5.1 MEDIUM |
|
Vulnerability of inadequate packet length check in the BLE module.
Impact: Successful exploitation of this vulnerability may affect performance.
|
|||||
| CVE-2025-54647 | 1 Huawei | 1 Harmonyos | 2025-08-13 | N/A | 5.4 MEDIUM |
|
Out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54648 | 1 Huawei | 1 Harmonyos | 2025-08-13 | N/A | 5.4 MEDIUM |
|
Out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54649 | 1 Huawei | 1 Harmonyos | 2025-08-13 | N/A | 4.5 MEDIUM |
|
Vulnerability of using incompatible types to access resources in the location service.
Impact: Successful exploitation of this vulnerability may cause some location information attributes to be incorrect.
|
|||||
| CVE-2025-54651 | 1 Huawei | 1 Harmonyos | 2025-08-13 | N/A | 4.8 MEDIUM |
|
Race condition vulnerability in the kernel hufs module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-54615 | 1 Huawei | 1 Harmonyos | 2025-08-12 | N/A | 6.2 MEDIUM |
|
Vulnerability of insufficient information protection in the media library module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-54616 | 1 Huawei | 1 Harmonyos | 2025-08-12 | N/A | 4.0 MEDIUM |
|
Out-of-bounds array access vulnerability in the ArkUI framework.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54614 | 1 Huawei | 1 Harmonyos | 2025-08-12 | N/A | 6.2 MEDIUM |
|
Input verification vulnerability in the home screen module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54611 | 1 Huawei | 2 Emui, Harmonyos | 2025-08-12 | N/A | 7.3 HIGH |
|
EXTRA_REFERRER resource read vulnerability in the Gallery module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
|||||
| CVE-2025-54610 | 1 Huawei | 1 Harmonyos | 2025-08-12 | N/A | 5.4 MEDIUM |
|
Out-of-bounds access vulnerability in the audio codec module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-54609 | 1 Huawei | 1 Harmonyos | 2025-08-12 | N/A | 5.4 MEDIUM |
|
Out-of-bounds access vulnerability in the audio codec module.
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-53186 | 1 Huawei | 2 Emui, Harmonyos | 2025-08-12 | N/A | 5.9 MEDIUM |
|
Vulnerability that allows third-party call apps to send broadcasts without verification in the audio framework module
Impact: Successful exploitation of this vulnerability may affect availability.
|
|||||
| CVE-2025-53185 | 1 Huawei | 2 Emui, Harmonyos | 2025-08-12 | N/A | 6.6 MEDIUM |
|
Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released memory
Impact: Successful exploitation of this vulnerability may affect service integrity.
|
|||||
| CVE-2025-53178 | 1 Huawei | 2 Emui, Harmonyos | 2025-08-12 | N/A | 4.8 MEDIUM |
|
Permission bypass vulnerability in the calendar storage module
Impact: Successful exploitation of this vulnerability may affect the schedule reminder function of head units.
|
|||||
| CVE-2025-53177 | 1 Huawei | 2 Emui, Harmonyos | 2025-08-12 | N/A | 3.9 LOW |
|
Permission bypass vulnerability in the calendar storage module
Impact: Successful exploitation of this vulnerability may affect the schedule syncing function of watches.
|
|||||