Huawei Harmonyos vulnerabilities
1,076 known vulnerabilities affecting huawei/harmonyos.
Total CVEs
1,076
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL138HIGH534MEDIUM365LOW39
Vulnerabilities
Page 12 of 54
CVE-2025-46591MEDIUMCVSS 5.5v5.0.02025-05-06
CVE-2025-46591 [MEDIUM] CWE-602 CVE-2025-46591: Out-of-bounds data read vulnerability in the authorization module
Impact: Successful exploitation of
Out-of-bounds data read vulnerability in the authorization module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-46593MEDIUMCVSS 5.5v5.0.02025-05-06
CVE-2025-46593 [MEDIUM] CWE-400 CVE-2025-46593: Process residence vulnerability in abnormal scenarios in the print module
Impact: Successful exploit
Process residence vulnerability in abnormal scenarios in the print module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-46586MEDIUMCVSS 5.5v5.0.02025-05-06
CVE-2025-46586 [MEDIUM] CWE-862 CVE-2025-46586: Permission control vulnerability in the contacts module
Impact: Successful exploitation of this vuln
Permission control vulnerability in the contacts module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-46587MEDIUMCVSS 5.5v5.0.02025-05-06
CVE-2025-46587 [MEDIUM] CWE-264 CVE-2025-46587: Permission control vulnerability in the media library module
Impact: Successful exploitation of this
Permission control vulnerability in the media library module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-46592MEDIUMCVSS 5.5v5.0.02025-05-06
CVE-2025-46592 [MEDIUM] CWE-476 CVE-2025-46592: Null pointer dereference vulnerability in the USB HDI driver module
Impact: Successful exploitation
Null pointer dereference vulnerability in the USB HDI driver module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2024-58127CRITICALCVSS 9.1v4.0.0v4.3.02025-04-07
CVE-2024-58127 [CRITICAL] CWE-290 CVE-2024-58127: Access control vulnerability in the security verification module
Impact: Successful exploitation of
Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
cvelistv5nvd
CVE-2025-31170CRITICALCVSS 9.1v4.0.0v4.3.0+1 more2025-04-07
CVE-2025-31170 [CRITICAL] CWE-290 CVE-2025-31170: Access control vulnerability in the security verification module
Impact: Successful exploitation of
Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
cvelistv5nvd
CVE-2024-58126CRITICALCVSS 9.1v4.0.0v4.3.02025-04-07
CVE-2024-58126 [CRITICAL] CWE-290 CVE-2024-58126: Access control vulnerability in the security verification module
Impact: Successful exploitation of
Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
cvelistv5nvd
CVE-2024-58124CRITICALCVSS 9.1v4.0.02025-04-07
CVE-2024-58124 [CRITICAL] CWE-290 CVE-2024-58124: Access control vulnerability in the security verification module
Impact: Successful exploitation of
Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
cvelistv5nvd
CVE-2024-58125CRITICALCVSS 9.1v4.0.0v4.3.02025-04-07
CVE-2024-58125 [CRITICAL] CWE-290 CVE-2024-58125: Access control vulnerability in the security verification module
Impact: Successful exploitation of
Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
cvelistv5nvd
CVE-2024-58106HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58106 [HIGH] CWE-120 CVE-2024-58106: Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerabil
Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2024-58111HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58111 [HIGH] CWE-248 CVE-2024-58111: Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework
Impact: Suc
Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2024-58115HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58115 [HIGH] CWE-121 CVE-2024-58115: Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework
Impact: Successful ex
Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2024-58108HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58108 [HIGH] CWE-120 CVE-2024-58108: Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerabil
Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2024-58107HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58107 [HIGH] CWE-680 CVE-2024-58107: Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerabil
Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-31174HIGHCVSS 7.5v5.0.02025-04-07
CVE-2025-31174 [HIGH] CWE-22 CVE-2025-31174: Path traversal vulnerability in the DFS module
Impact: Successful exploitation of this vulnerability
Path traversal vulnerability in the DFS module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2024-58116HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58116 [HIGH] CWE-121 CVE-2024-58116: Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework
Impact: Successful ex
Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2024-58113HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58113 [HIGH] CWE-399 CVE-2024-58113: Vulnerability of improper resource management in the memory management module
Impact: Successful exp
Vulnerability of improper resource management in the memory management module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-31175HIGHCVSS 7.5v2.0.0v2.1.0+3 more2025-04-07
CVE-2025-31175 [HIGH] CWE-502 CVE-2025-31175: Deserialization mismatch vulnerability in the DSoftBus module
Impact: Successful exploitation of thi
Deserialization mismatch vulnerability in the DSoftBus module
Impact: Successful exploitation of this vulnerability may affect service integrity.
cvelistv5nvd
CVE-2024-58110HIGHCVSS 7.5v5.0.02025-04-07
CVE-2024-58110 [HIGH] CWE-120 CVE-2024-58110: Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerabil
Buffer overflow vulnerability in the codec module
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd