Filtered by vendor Huawei
Subscribe
Total
1888 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-33644 | 3 Fedoraproject, Feep, Huawei | 3 Fedora, Libtar, Openeuler | 2024-02-28 | N/A | 8.1 HIGH |
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read. | |||||
CVE-2022-37002 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | N/A | 9.8 CRITICAL |
The SystemUI module has a privilege escalation vulnerability. Successful exploitation of this vulnerability can cause malicious applications to pop up windows or run in the background. | |||||
CVE-2022-41601 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | N/A | 3.4 LOW |
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service. | |||||
CVE-2022-39007 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | N/A | 9.8 CRITICAL |
The location module has a vulnerability of bypassing permission verification.Successful exploitation of this vulnerability may cause privilege escalation. | |||||
CVE-2022-44560 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | N/A | 5.3 MEDIUM |
The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified. | |||||
CVE-2022-44547 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | N/A | 7.5 HIGH |
The Display Service module has a UAF vulnerability. Successful exploitation of this vulnerability may affect the display service availability. | |||||
CVE-2021-40040 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | N/A | 7.5 HIGH |
Vulnerability of writing data to an arbitrary address in the HW_KEYMASTER module. Successful exploitation of this vulnerability may affect confidentiality. | |||||
CVE-2022-44549 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | N/A | 7.5 HIGH |
The LBS module has a vulnerability in geofencing API access. Successful exploitation of this vulnerability may cause third-party apps to access the geofencing APIs without authorization, affecting user confidentiality. | |||||
CVE-2022-38996 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | N/A | 7.5 HIGH |
The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability. | |||||
CVE-2022-38998 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | N/A | 7.5 HIGH |
The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality. | |||||
CVE-2022-29798 | 1 Huawei | 2 Cv81-wdm, Cv81-wdm Firmware | 2024-02-28 | 7.8 HIGH | 7.5 HIGH |
There is a denial of service vulnerability in CV81-WDM FW versions 01.70.49.29.46. Successful exploitation could cause denial of service. | |||||
CVE-2021-46742 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | 6.4 MEDIUM | 9.1 CRITICAL |
The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of this vulnerability may affect the availability. | |||||
CVE-2022-22257 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
The customization framework has a vulnerability of improper permission control.Successful exploitation of this vulnerability may affect data integrity. | |||||
CVE-2022-22254 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
A permission bypass vulnerability exists when the NFC CAs access the TEE.Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2022-29795 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability. | |||||
CVE-2022-22256 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality. | |||||
CVE-2021-40051 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
There is an unauthorized access vulnerability in system components. Successful exploitation of this vulnerability will affect confidentiality. | |||||
CVE-2021-22429 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | 10.0 HIGH | 9.8 CRITICAL |
There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed. | |||||
CVE-2022-31762 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-02-28 | 4.6 MEDIUM | 7.8 HIGH |
The AMS module has a vulnerability in input validation. Successful exploitation of this vulnerability may cause privilege escalation. | |||||
CVE-2022-29791 | 1 Huawei | 2 Emui, Harmonyos | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services. |