Huawei Harmonyos vulnerabilities
1,076 known vulnerabilities affecting huawei/harmonyos.
Total CVEs
1,076
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL138HIGH534MEDIUM365LOW39
Vulnerabilities
Page 9 of 54
CVE-2025-54626MEDIUMCVSS 4.4v5.1.02025-08-06
CVE-2025-54626 [MEDIUM] CWE-416 CVE-2025-54626: Pointer dangling vulnerability in the cjwindow module.
Impact: Successful exploitation of this vulne
Pointer dangling vulnerability in the cjwindow module.
Impact: Successful exploitation of this vulnerability may affect function stability.
cvelistv5nvd
CVE-2025-54629MEDIUMCVSS 4.7v4.0.0v4.2.0+4 more2025-08-06
CVE-2025-54629 [MEDIUM] CWE-362 CVE-2025-54629: Race condition issue occurring in the physical page import process of the memory management module.
Race condition issue occurring in the physical page import process of the memory management module.
Impact: Successful exploitation of this vulnerability may affect service integrity.
cvelistv5nvd
CVE-2025-54614MEDIUMCVSS 5.5v5.0.1v5.1.02025-08-06
CVE-2025-54614 [MEDIUM] CWE-20 CVE-2025-54614: Input verification vulnerability in the home screen module.
Impact: Successful exploitation of this
Input verification vulnerability in the home screen module.
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-54634MEDIUMCVSS 5.5v5.0.1v5.1.02025-08-06
CVE-2025-54634 [MEDIUM] CWE-755 CVE-2025-54634: Vulnerability of improper processing of abnormal conditions in huge page separation.
Impact: Success
Vulnerability of improper processing of abnormal conditions in huge page separation.
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-54632MEDIUMCVSS 4.6v4.3.1v5.0.1+1 more2025-08-06
CVE-2025-54632 [MEDIUM] CWE-120 CVE-2025-54632: Vulnerability of insufficient data length verification in the HVB module.
Impact: Successful exploit
Vulnerability of insufficient data length verification in the HVB module.
Impact: Successful exploitation of this vulnerability may affect service integrity.
cvelistv5nvd
CVE-2025-54641MEDIUMCVSS 5.5v3.0.0v3.1.0+1 more2025-08-06
CVE-2025-54641 [MEDIUM] CWE-20 CVE-2025-54641: Issue of buffer overflow caused by insufficient data verification in the kernel acceleration module.
Issue of buffer overflow caused by insufficient data verification in the kernel acceleration module.
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-54615MEDIUMCVSS 5.5v5.0.1v5.1.02025-08-06
CVE-2025-54615 [MEDIUM] CWE-200 CVE-2025-54615: Vulnerability of insufficient information protection in the media library module.
Impact: Successful
Vulnerability of insufficient information protection in the media library module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-54638MEDIUMCVSS 5.5v5.0.1v5.1.02025-08-06
CVE-2025-54638 [MEDIUM] CWE-502 CVE-2025-54638: Issue of inconsistent read/write serialization in the ad module.
Impact: Successful exploitation of
Issue of inconsistent read/write serialization in the ad module.
Impact: Successful exploitation of this vulnerability may affect the availability of the ad service.
cvelistv5nvd
CVE-2025-54647MEDIUMCVSS 6.5v5.1.02025-08-06
CVE-2025-54647 [MEDIUM] CWE-125 CVE-2025-54647: Out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack.
Impact: Successf
Out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack.
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-54631MEDIUMCVSS 5.5v5.0.1v5.0.2+5 more2025-08-06
CVE-2025-54631 [MEDIUM] CWE-190 CVE-2025-54631: Vulnerability of insufficient data length verification in the partition module.
Impact: Successful e
Vulnerability of insufficient data length verification in the partition module.
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-54650MEDIUMCVSS 5.3v5.0.1v5.1.02025-08-06
CVE-2025-54650 [MEDIUM] CWE-129 CVE-2025-54650: Improper array index verification vulnerability in the audio codec module.
Impact: Successful exploi
Improper array index verification vulnerability in the audio codec module.
Impact: Successful exploitation of this vulnerability may affect the audio decoding function.
cvelistv5nvd
CVE-2025-54633MEDIUMCVSS 4.4v5.0.1v5.1.02025-08-06
CVE-2025-54633 [MEDIUM] CWE-125 CVE-2025-54633: Out-of-bounds read vulnerability in the register configuration of the DMA module.
Impact: Successful
Out-of-bounds read vulnerability in the register configuration of the DMA module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-54644MEDIUMCVSS 5.5v3.0.0v3.1.0+1 more2025-08-06
CVE-2025-54644 [MEDIUM] CWE-125 CVE-2025-54644: Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light m
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-54637MEDIUMCVSS 5.5v3.0.0v3.1.0+1 more2025-08-06
CVE-2025-54637 [MEDIUM] CWE-125 CVE-2025-54637: Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light m
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-54643MEDIUMCVSS 5.5v3.1.0v4.0.02025-08-06
CVE-2025-54643 [MEDIUM] CWE-125 CVE-2025-54643: Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light m
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-54651MEDIUMCVSS 4.7v5.0.1v5.1.02025-08-06
CVE-2025-54651 [MEDIUM] CWE-362 CVE-2025-54651: Race condition vulnerability in the kernel hufs module.
Impact: Successful exploitation of this vuln
Race condition vulnerability in the kernel hufs module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
cvelistv5nvd
CVE-2025-54623MEDIUMCVSS 6.5v5.0.1v5.0.2+1 more2025-08-06
CVE-2025-54623 [MEDIUM] CWE-680 CVE-2025-54623: Out-of-bounds read vulnerability in the devicemanager module.
Impact: Successful exploitation of thi
Out-of-bounds read vulnerability in the devicemanager module.
Impact: Successful exploitation of this vulnerability may affect availability.
cvelistv5nvd
CVE-2025-54649LOWCVSS 3.3v5.0.1v5.1.02025-08-06
CVE-2025-54649 [LOW] CWE-843 CVE-2025-54649: Vulnerability of using incompatible types to access resources in the location service.
Impact: Succe
Vulnerability of using incompatible types to access resources in the location service.
Impact: Successful exploitation of this vulnerability may cause some location information attributes to be incorrect.
cvelistv5nvd
CVE-2025-54612LOWCVSS 3.3v5.1.02025-08-06
CVE-2025-54612 [LOW] CWE-664 CVE-2025-54612: Iterator failure vulnerability in the card management module.
Impact: Successful exploitation of thi
Iterator failure vulnerability in the card management module.
Impact: Successful exploitation of this vulnerability may affect function stability.
cvelistv5nvd
CVE-2025-54613LOWCVSS 3.3v5.1.02025-08-06
CVE-2025-54613 [LOW] CWE-664 CVE-2025-54613: Iterator failure vulnerability in the card management module.
Impact: Successful exploitation of thi
Iterator failure vulnerability in the card management module.
Impact: Successful exploitation of this vulnerability may affect function stability.
cvelistv5nvd