Huawei Harmonyos vulnerabilities
1,076 known vulnerabilities affecting huawei/harmonyos.
Total CVEs
1,076
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL138HIGH534MEDIUM365LOW39
Vulnerabilities
Page 54 of 54
CVE-2021-22295MEDIUMCVSS 5.5v2.02021-08-06
CVE-2021-22295 [MEDIUM] CWE-276 CVE-2021-22295: A component of the HarmonyOS has a permission bypass vulnerability. Local attackers may exploit this
A component of the HarmonyOS has a permission bypass vulnerability. Local attackers may exploit this vulnerability to cause the device to hang due to the page error OsVmPageFaultHandler.
nvd
CVE-2021-22418HIGHCVSS 7.8v2.02021-08-03
CVE-2021-22418 [HIGH] CWE-190 CVE-2021-22418: A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may
A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause memory overwriting.
nvd
CVE-2021-22420HIGHCVSS 7.8v2.02021-08-03
CVE-2021-22420 [HIGH] CWE-668 CVE-2021-22420: A component of the HarmonyOS has a External Control of System or Configuration Setting vulnerability
A component of the HarmonyOS has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause the underlying trust of the application trustlist mechanism is missing..
nvd
CVE-2021-22422HIGHCVSS 7.8v2.02021-08-03
CVE-2021-22422 [HIGH] CWE-190 CVE-2021-22422: A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may
A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause memory overwriting.
nvd
CVE-2021-22421HIGHCVSS 7.8v2.02021-08-03
CVE-2021-22421 [HIGH] CWE-269 CVE-2021-22421: A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may
A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may exploit this vulnerability to cause further Elevation of Privileges.
nvd
CVE-2021-22425HIGHCVSS 7.8v2.02021-08-03
CVE-2021-22425 [HIGH] CWE-415 CVE-2021-22425: A component of the HarmonyOS has a Double Free vulnerability. Local attackers may exploit this vulne
A component of the HarmonyOS has a Double Free vulnerability. Local attackers may exploit this vulnerability to cause Root Elevating Privileges.
nvd
CVE-2021-22423HIGHCVSS 7.8v2.02021-08-03
CVE-2021-22423 [HIGH] CWE-787 CVE-2021-22423: A component of the HarmonyOS has a Out-of-bounds Write Vulnerability. Local attackers may exploit th
A component of the HarmonyOS has a Out-of-bounds Write Vulnerability. Local attackers may exploit this vulnerability to cause integer overflow.
nvd
CVE-2021-22416HIGHCVSS 7.8v2.02021-08-03
CVE-2021-22416 [HIGH] CVE-2021-22416: A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit
A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel Code Execution.
nvd
CVE-2021-22424MEDIUMCVSS 5.5v2.02021-08-03
CVE-2021-22424 [MEDIUM] CWE-401 CVE-2021-22424: A component of the HarmonyOS has a Kernel Memory Leakage Vulnerability. Local attackers may exploit
A component of the HarmonyOS has a Kernel Memory Leakage Vulnerability. Local attackers may exploit this vulnerability to cause Kernel Denial of Service.
nvd
CVE-2021-22419MEDIUMCVSS 5.5v2.02021-08-03
CVE-2021-22419 [MEDIUM] CWE-345 CVE-2021-22419: A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Loc
A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Local attackers may exploit this vulnerability to cause persistent dos.
nvd
CVE-2021-22417MEDIUMCVSS 5.5v2.02021-08-03
CVE-2021-22417 [MEDIUM] CVE-2021-22417: A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit
A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel Memory Leakage.
nvd
CVE-2021-22318MEDIUMCVSS 5.5v2.0vHarmonyOS 2.02021-07-14
CVE-2021-22318 [MEDIUM] CWE-476 CVE-2021-22318: A component of the HarmonyOS 2.0 has a Null Pointer Dereference Vulnerability. Local attackers may e
A component of the HarmonyOS 2.0 has a Null Pointer Dereference Vulnerability. Local attackers may exploit this vulnerability to cause system denial of service.
nvd
CVE-2021-22326HIGHCVSS 7.1v2.02021-06-30
CVE-2021-22326 [HIGH] CWE-269 CVE-2021-22326: A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attacke
A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability.
nvd
CVE-2021-22376HIGHCVSS 8.4v2.02021-06-30
CVE-2021-22376 [HIGH] CWE-269 CVE-2021-22376: A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may
A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may exploit this vulnerability to bypass user restrictions.
nvd
CVE-2021-22296MEDIUMCVSS 5.5v2.0vHarmonyOS 2.02021-03-02
CVE-2021-22296 [MEDIUM] CVE-2021-22296: A component of HarmonyOS 2.0 has a DoS vulnerability. Local attackers may exploit this vulnerability
A component of HarmonyOS 2.0 has a DoS vulnerability. Local attackers may exploit this vulnerability to mount a file system to the target device, causing DoS of the file system.
nvd
CVE-2021-22294LOWCVSS 3.3v2.0vHarmonyOS 2.02021-03-02
CVE-2021-22294 [LOW] CVE-2021-22294: A component API of the HarmonyOS 2.0 has a permission bypass vulnerability. Local attackers may expl
A component API of the HarmonyOS 2.0 has a permission bypass vulnerability. Local attackers may exploit this vulnerability to issue commands repeatedly, exhausting system service resources.
nvd
← Previous54 / 54