Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
HUAWEI emui

Version 13.0.0

SEMANTIC 300 CVEs

Known Vulnerabilities

CVE-2024-56449

Privilege escalation vulnerability in the Account module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 6.6 Published Jan 08, 2025

CVE-2024-56448

Vulnerability of improper access control in the home screen widget module Impact: Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 6.7 Published Jan 08, 2025

CVE-2024-56447

Vulnerability of improper permission control in the window management module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.8 Published Jan 08, 2025

CVE-2024-56442

Vulnerability of native APIs not being implemented in the NFC service module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

MEDIUM CVSS 5.5 Published Jan 08, 2025

CVE-2024-56441

Race condition vulnerability in the Bastet module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.1 Published Jan 08, 2025

CVE-2024-56440

Permission control vulnerability in the Connectivity module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

MEDIUM CVSS 6.2 Published Jan 08, 2025

CVE-2023-52955

Vulnerability of improper authentication in the ANS system service module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

MEDIUM CVSS 6.5 Published Jan 08, 2025

CVE-2023-52954

Vulnerability of improper permission control in the Gallery module Impact: Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 4.4 Published Jan 08, 2025

CVE-2023-52953

Path traversal vulnerability in the Medialibrary module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

MEDIUM CVSS 6.2 Published Jan 08, 2025

CVE-2024-54101

Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published Dec 12, 2024

CVE-2024-54100

Vulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

MEDIUM CVSS 6.2 Published Dec 12, 2024

CVE-2024-54099

File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

MEDIUM CVSS 6.7 Published Dec 12, 2024

CVE-2024-54098

Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect service integrity.

HIGH CVSS 8.5 Published Dec 12, 2024

CVE-2024-54097

Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementation and integrity.

HIGH CVSS 7.3 Published Dec 12, 2024

CVE-2024-54096

Vulnerability of improper access control in the MTP module Impact: Successful exploitation of this vulnerability may affect integrity and accuracy.

MEDIUM CVSS 5.3 Published Dec 12, 2024

CVE-2024-51528

Vulnerability of improper log printing in the Super Home Screen module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.0 Published Nov 05, 2024

CVE-2024-51527

Permission control vulnerability in the Gallery app Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 5.1 Published Nov 05, 2024

CVE-2024-47294

Access permission verification vulnerability in the input method framework module Impact: Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 4.4 Published Sep 27, 2024

CVE-2024-47293

Out-of-bounds write vulnerability in the HAL-WIFI module Impact: Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 4.7 Published Sep 27, 2024

CVE-2024-47292

Path traversal vulnerability in the Bluetooth module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 6.2 Published Sep 27, 2024

CVE-2024-47291

Permission vulnerability in the ActivityManagerService (AMS) module Impact: Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 5.6 Published Sep 27, 2024

CVE-2024-47290

Input validation vulnerability in the USB service module Impact: Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 5.5 Published Sep 27, 2024

CVE-2024-45449

Access permission verification vulnerability in the ringtone setting module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 5.1 Published Sep 04, 2024

CVE-2024-45447

Access control vulnerability in the camera framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.4 Published Sep 04, 2024

CVE-2024-45446

Access permission verification vulnerability in the camera driver module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 5.5 Published Sep 04, 2024

CVE-2024-45445

Vulnerability of resources not being closed or released in the keystore module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 4.0 Published Sep 04, 2024

CVE-2024-45444

Access permission verification vulnerability in the WMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 5.5 Published Sep 04, 2024

CVE-2024-45442

Vulnerability of permission verification for APIs in the DownloadProviderMain module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 5.1 Published Sep 04, 2024

CVE-2024-45441

Input verification vulnerability in the system service module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published Sep 04, 2024

CVE-2024-42039

Access control vulnerability in the SystemUI module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.3 Published Sep 04, 2024

CVE-2024-45450

Permission control vulnerability in the software update module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.0 Published Sep 04, 2024

CVE-2024-42038

Vulnerability of PIN enhancement failures in the screen lock module Impact: Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

HIGH CVSS 8.8 Published Aug 08, 2024

CVE-2024-42037

Vulnerability of uncaught exceptions in the Graphics module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CRITICAL CVSS 9.3 Published Aug 08, 2024

CVE-2024-42036

Access permission verification vulnerability in the Notepad module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

LOW CVSS 2.5 Published Aug 08, 2024

CVE-2024-42034

LaunchAnywhere vulnerability in the account module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 6.6 Published Aug 08, 2024

CVE-2024-42033

Access control vulnerability in the security verification module mpact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

MEDIUM CVSS 6.9 Published Aug 08, 2024

CVE-2024-42032

Access permission verification vulnerability in the Contacts module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.4 Published Aug 08, 2024

CVE-2024-42031

Access permission verification vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Aug 08, 2024

CVE-2024-42030

Access permission verification vulnerability in the content sharing pop-up module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 6.2 Published Aug 08, 2024

CVE-2023-7265

Permission verification vulnerability in the lock screen module Impact: Successful exploitation of this vulnerability may affect availability

MEDIUM CVSS 4.0 Published Aug 08, 2024

CVE-2023-7271

Privilege escalation vulnerability in the NMS module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 5.5 Published Jul 25, 2024

CVE-2024-39670

Privilege escalation vulnerability in the account synchronisation module. Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published Jul 25, 2024

CVE-2024-39674

Plaintext vulnerability in the Gallery search module. Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published Jul 25, 2024

CVE-2024-39673

Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 6.8 Published Jul 25, 2024

CVE-2024-36503

Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.3 Published Jun 14, 2024

CVE-2024-36502

Out-of-bounds read vulnerability in the audio module Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.9 Published Jun 14, 2024

CVE-2024-36501

Memory management vulnerability in the boottime module Impact: Successful exploitation of this vulnerability can affect integrity.

MEDIUM CVSS 5.6 Published Jun 14, 2024

CVE-2024-36500

Privilege escalation vulnerability in the AMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.8 Published Jun 14, 2024

CVE-2024-36499

Vulnerability of unauthorized screenshot capturing in the WMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 6.8 Published Jun 14, 2024

CVE-2023-52721

The WindowManager module has a vulnerability in permission control. Impact: Successful exploitation of this vulnerability may affect confidentiality.

MEDIUM CVSS 6.2 Published May 11, 2024

CVE-2024-4046

Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.4 Published May 11, 2024

CVE-2024-32999

Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.8 Published May 11, 2024

CVE-2024-32998

NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 5.9 Published May 11, 2024

CVE-2023-52720

Race condition vulnerability in the soundtrigger module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 4.1 Published May 11, 2024

CVE-2024-32997

Race condition vulnerability in the binder driver module Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 8.4 Published May 11, 2024

CVE-2024-32996

Privilege escalation vulnerability in the account module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published May 11, 2024

CVE-2024-32995

Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published May 11, 2024

CVE-2023-52719

Privilege escalation vulnerability in the PMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.1 Published May 11, 2024

CVE-2024-32993

Out-of-bounds access vulnerability in the memory module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 5.6 Published May 11, 2024

CVE-2023-52384

Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 4.7 Published May 11, 2024

CVE-2023-52383

Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 4.7 Published May 11, 2024

CVE-2024-32992

Insufficient verification vulnerability in the baseband module Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published May 11, 2024

CVE-2024-32991

Permission verification vulnerability in the wpa_supplicant module Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published May 11, 2024

CVE-2024-32990

Permission verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.1 Published May 11, 2024

CVE-2024-32989

Insufficient verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect availability.

LOW CVSS 3.3 Published May 11, 2024

CVE-2024-27897

Input verification vulnerability in the call module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2024-27896

Input verification vulnerability in the log module. Impact: Successful exploitation of this vulnerability can affect integrity.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52364

Vulnerability of input parameters being not strictly verified in the RSMC module. Impact: Successful exploitation of this vulnerability may cause out-of-bounds write.

MEDIUM CVSS 6.3 Published Apr 08, 2024

CVE-2023-52386

Out-of-bounds write vulnerability in the RSMC module. Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52385

Out-of-bounds write vulnerability in the RSMC module. Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published Apr 08, 2024

CVE-2023-52554

Permission control vulnerability in the Bluetooth module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 6.5 Published Apr 08, 2024

CVE-2023-52553

Race condition vulnerability in the Wi-Fi module. Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.4 Published Apr 08, 2024

CVE-2023-52552

Input verification vulnerability in the power module. Impact: Successful exploitation of this vulnerability will affect availability.

UNKNOWN CVSS 7.5 Published Apr 08, 2024

CVE-2023-52551

Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 5.3 Published Apr 08, 2024

CVE-2023-52550

Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Apr 08, 2024

CVE-2023-52549

Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52546

Vulnerability of package name verification being bypassed in the Calendar app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52545

Vulnerability of undefined permissions in the Calendar app. Impact: Successful exploitation of this vulnerability will affect availability.

UNKNOWN CVSS 7.5 Published Apr 08, 2024

CVE-2023-52544

Vulnerability of file path verification being bypassed in the email module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.3 Published Apr 08, 2024

CVE-2023-52359

Vulnerability of permission verification in some APIs in the ActivityTaskManagerService module. Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52543

Permission verification vulnerability in the system module. Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 6.2 Published Apr 08, 2024

CVE-2023-52542

Permission verification vulnerability in the system module. Impact: Successful exploitation of this vulnerability will affect availability.

UNKNOWN CVSS 6.5 Published Apr 08, 2024

CVE-2023-52541

Authentication vulnerability in the API for app pre-loading. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52540

Vulnerability of improper authentication in the Iaware module. Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52539

Permission verification vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Apr 08, 2024

CVE-2023-52538

Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerability will affect availability.

CRITICAL CVSS 9.1 Published Apr 08, 2024

CVE-2023-52537

Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published Apr 08, 2024

CVE-2023-52388

Permission control vulnerability in the clock module. Impact: Successful exploitation of this vulnerability will affect availability.

UNKNOWN CVSS 7.5 Published Apr 08, 2024

CVE-2023-52717

Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability.

MEDIUM CVSS 5.3 Published Apr 07, 2024

CVE-2023-52716

Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerability will affect availability.

UNKNOWN CVSS 7.5 Published Apr 07, 2024

CVE-2023-52714

Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Apr 07, 2024

CVE-2023-52713

Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

HIGH CVSS 7.7 Published Apr 07, 2024

CVE-2024-30418

Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulnerability will affect availability.

UNKNOWN CVSS 7.5 Published Apr 07, 2024

CVE-2024-30417

Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Apr 07, 2024

CVE-2024-30416

Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published Apr 07, 2024

CVE-2024-30415

Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability.

CRITICAL CVSS 9.1 Published Apr 07, 2024

CVE-2024-30414

Command injection vulnerability in the AccountManager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Apr 07, 2024

CVE-2024-30413

Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability.

HIGH CVSS 7.5 Published Apr 07, 2024

CVE-2022-48621

Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 6.3 Published Feb 18, 2024

CVE-2023-52381

Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

CRITICAL CVSS 9.8 Published Feb 18, 2024

CVE-2023-52380

Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality.

MEDIUM CVSS 4.3 Published Feb 18, 2024

CVE-2023-52379

Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Feb 18, 2024

CVE-2023-52378

Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cause features to perform abnormally.

CRITICAL CVSS 9.8 Published Feb 18, 2024

CVE-2023-52377

Vulnerability of input data not being verified in the cellular data module.Successful exploitation of this vulnerability may cause out-of-bounds access.

HIGH CVSS 7.4 Published Feb 18, 2024

CVE-2023-52376

Information management vulnerability in the Gallery module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Feb 18, 2024

CVE-2023-52375

Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 5.5 Published Feb 18, 2024

CVE-2023-52374

Permission control vulnerability in the package management module.Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Feb 18, 2024

CVE-2023-52373

Vulnerability of permission verification in the content sharing pop-up module.Successful exploitation of this vulnerability may cause unauthorized file sharing.

HIGH CVSS 7.5 Published Feb 18, 2024

CVE-2023-52372

Vulnerability of input parameter verification in the motor module.Successful exploitation of this vulnerability may affect availability.

UNKNOWN CVSS 7.5 Published Feb 18, 2024

CVE-2023-52371

Vulnerability of null references in the motor module.Successful exploitation of this vulnerability may affect availability.

LOW CVSS 3.5 Published Feb 18, 2024

CVE-2023-52370

Stack overflow vulnerability in the network acceleration module.Successful exploitation of this vulnerability may cause unauthorized file access.

CRITICAL CVSS 9.8 Published Feb 18, 2024

CVE-2023-52369

Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and integrity.

CRITICAL CVSS 9.1 Published Feb 18, 2024

CVE-2023-52368

Input verification vulnerability in the account module.Successful exploitation of this vulnerability may cause features to perform abnormally.

MEDIUM CVSS 5.3 Published Feb 18, 2024

CVE-2023-52367

Vulnerability of improper access control in the media library module.Successful exploitation of this vulnerability may affect service availability and integrity.

HIGH CVSS 7.7 Published Feb 18, 2024

CVE-2023-52366

Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN CVSS 7.5 Published Feb 18, 2024

CVE-2023-52365

Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause features to perform abnormally.

HIGH CVSS 7.7 Published Feb 18, 2024

CVE-2023-52363

Vulnerability of defects introduced in the design process in the Control Panel module.Successful exploitation of this vulnerability may cause app processes to be started by mistake.

MEDIUM CVSS 6.3 Published Feb 18, 2024

CVE-2023-52362

Permission management vulnerability in the lock screen module.Successful exploitation of this vulnerability may affect availability.

UNKNOWN CVSS 7.5 Published Feb 18, 2024

CVE-2023-52358

Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 6.2 Published Feb 18, 2024

CVE-2023-52357

Vulnerability of serialization/deserialization mismatch in the vibration framework.Successful exploitation of this vulnerability may affect availability.

MEDIUM CVSS 6.2 Published Feb 18, 2024

CVE-2023-52097

Vulnerability of foreground service restrictions being bypassed in the NMS module.Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Feb 18, 2024

CVE-2023-52387

Resource reuse vulnerability in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality.

HIGH CVSS 7.5 Published Feb 18, 2024

CVE-2023-52106

Vulnerability of permission verification for APIs in the DownloadProviderMain module. Impact: Successful exploitation of this vulnerability will affect integrity and availability.

MEDIUM CVSS 4.4 Published Jan 16, 2024

CVE-2023-52104

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Jan 16, 2024

CVE-2023-52103

Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read.

UNKNOWN CVSS 9.8 Published Jan 16, 2024

CVE-2023-52102

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Jan 16, 2024

CVE-2023-52101

Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availability and integrity.

UNKNOWN Published Jan 16, 2024

CVE-2023-52099

Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Jan 16, 2024

CVE-2023-52098

Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.

UNKNOWN Published Jan 16, 2024

CVE-2023-52108

Vulnerability of process priorities being raised in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.

UNKNOWN Published Jan 16, 2024

CVE-2023-52107

Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Jan 16, 2024

CVE-2023-52116

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

UNKNOWN Published Jan 16, 2024

CVE-2023-52114

Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.

UNKNOWN CVSS 7.5 Published Jan 16, 2024

CVE-2023-44112

Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 7.5 Published Jan 16, 2024

CVE-2023-52113

launchAnyWhere vulnerability in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.

UNKNOWN Published Jan 16, 2024

CVE-2023-52112

Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Jan 16, 2024

CVE-2023-52111

Authorization vulnerability in the BootLoader module. Successful exploitation of this vulnerability may affect service integrity.

UNKNOWN Published Jan 16, 2024

CVE-2023-52109

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Jan 16, 2024

CVE-2023-44117

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Jan 16, 2024

CVE-2023-4566

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Jan 16, 2024

CVE-2023-6273

Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN CVSS 5.3 Published Dec 06, 2023

CVE-2023-49240

Unauthorized access vulnerability in the launcher module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-49239

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-49246

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Dec 06, 2023

CVE-2023-49245

Unauthorized access vulnerability in the Huawei Share module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-49244

Permission management vulnerability in the multi-user module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-49243

Vulnerability of unauthorized access to email attachments in the email module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-49242

Free broadcast vulnerability in the running management module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-49241

API permission control vulnerability in the network management module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-44113

Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Dec 06, 2023

CVE-2023-49248

Vulnerability of unauthorized file access in the Settings app. Successful exploitation of this vulnerability may cause unauthorized file access.

UNKNOWN Published Dec 06, 2023

CVE-2023-49247

Permission verification vulnerability in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Dec 06, 2023

CVE-2023-46773

Permission management vulnerability in the PMS module. Successful exploitation of this vulnerability may cause privilege escalation.

UNKNOWN Published Dec 06, 2023

CVE-2023-46759

Permission control vulnerability in the call module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Nov 08, 2023

CVE-2023-46758

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

UNKNOWN Published Nov 08, 2023

CVE-2023-46756

Permission control vulnerability in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

UNKNOWN Published Nov 08, 2023

CVE-2023-46755

Vulnerability of input parameters being not strictly verified in the input. Successful exploitation of this vulnerability may cause the launcher to restart.

UNKNOWN CVSS 5.3 Published Nov 08, 2023

CVE-2023-46764

Unauthorized startup vulnerability of background apps. Successful exploitation of this vulnerability may cause background apps to start maliciously.

UNKNOWN Published Nov 08, 2023

CVE-2023-46763

Vulnerability of background app permission management in the framework module. Successful exploitation of this vulnerability may cause background apps to start maliciously.

UNKNOWN Published Nov 08, 2023

CVE-2023-46762

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-46761

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

UNKNOWN Published Nov 08, 2023

CVE-2023-46760

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-46767

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-46766

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-46765

Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-46774

Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2022-48613

Race condition vulnerability in the kernel module. Successful exploitation of this vulnerability may cause variable values to be read with the condition evaluation bypassed.

UNKNOWN Published Nov 08, 2023

CVE-2023-46771

Security vulnerability in the face unlock module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-44098

Vulnerability of missing encryption in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-44115

Vulnerability of improper permission control in the Booster module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-46770

Out-of-bounds vulnerability in the sensor module. Successful exploitation of this vulnerability may cause mistouch prevention errors on users' mobile phones.

UNKNOWN CVSS 7.5 Published Nov 08, 2023

CVE-2023-46769

Use-After-Free (UAF) vulnerability in the dubai module. Successful exploitation of this vulnerability will affect availability.

UNKNOWN Published Nov 08, 2023

CVE-2023-46768

Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Nov 08, 2023

CVE-2023-5801

Vulnerability of identity verification being bypassed in the face unlock module. Successful exploitation of this vulnerability will affect integrity and confidentiality.

UNKNOWN Published Nov 08, 2023

CVE-2023-44108

Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to restart.

UNKNOWN CVSS 7.5 Published Oct 11, 2023

CVE-2023-44105

Vulnerability of permissions not being strictly verified in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Oct 11, 2023

CVE-2023-44119

Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability.

UNKNOWN Published Oct 11, 2023

CVE-2023-44118

Vulnerability of undefined permissions in the MeeTime module.Successful exploitation of this vulnerability will affect availability and confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44116

Vulnerability of access permissions not being strictly verified in the APPWidget module.Successful exploitation of this vulnerability may cause some apps to run without being authorized.

UNKNOWN Published Oct 11, 2023

CVE-2023-44114

Out-of-bounds array vulnerability in the dataipa module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44111

Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44110

Out-of-bounds access vulnerability in the audio module.Successful exploitation of this vulnerability may affect availability.

UNKNOWN Published Oct 11, 2023

CVE-2023-41304

Parameter verification vulnerability in the window module.Successful exploitation of this vulnerability may cause the size of an app window to be adjusted to that of a floating window.

UNKNOWN Published Oct 11, 2023

CVE-2023-44106

API permission management vulnerability in the Fwk-Display module.Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Oct 11, 2023

CVE-2023-44104

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44103

Out-of-bounds read vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44102

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability can cause the Bluetooth function to be unavailable.

UNKNOWN Published Oct 11, 2023

CVE-2023-44100

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44097

Vulnerability of the permission to access device SNs being improperly managed.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44095

Use-After-Free (UAF) vulnerability in the surfaceflinger module.Successful exploitation of this vulnerability can cause system crash.

UNKNOWN Published Oct 11, 2023

CVE-2023-44094

Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to restart.

UNKNOWN Published Oct 11, 2023

CVE-2023-44109

Clone vulnerability in the huks ta module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44096

Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2023-44093

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Oct 11, 2023

CVE-2022-48606

Stability-related vulnerability in the binder background management and control module. Successful exploitation of this vulnerability may affect availability.

UNKNOWN Published Sep 26, 2023

CVE-2023-4565

Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable.

UNKNOWN CVSS 5.3 Published Sep 26, 2023

CVE-2023-41312

Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause several apps to be activated automatically.

UNKNOWN Published Sep 26, 2023

CVE-2023-41311

Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause an app to be activated automatically.

UNKNOWN Published Sep 26, 2023

CVE-2023-41310

Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this vulnerability may cause malicious apps to run continuously in the background.

UNKNOWN Published Sep 26, 2023

CVE-2023-41309

Permission control vulnerability in the MediaPlaybackController module. Successful exploitation of this vulnerability may affect availability.

UNKNOWN Published Sep 26, 2023

CVE-2023-41308

Screenshot vulnerability in the input module. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Sep 26, 2023

CVE-2023-41307

Memory overwriting vulnerability in the security module. Successful exploitation of this vulnerability may affect availability.

UNKNOWN Published Sep 26, 2023

CVE-2023-41305

Vulnerability of 5G messages being sent without being encrypted in a VPN environment in the SMS message module. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Sep 26, 2023

CVE-2023-41303

Command injection vulnerability in the distributed file system module. Successful exploitation of this vulnerability may cause variables in the sock structure to be modified.

UNKNOWN Published Sep 25, 2023

CVE-2022-48605

Input verification vulnerability in the fingerprint module. Successful exploitation of this vulnerability will affect confidentiality, integrity, and availability.

UNKNOWN Published Sep 25, 2023

CVE-2023-41293

Data security classification vulnerability in the DDMP module. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Sep 25, 2023

CVE-2023-41302

Redirection permission verification vulnerability in the home screen module. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Sep 25, 2023

CVE-2023-41301

Vulnerability of unauthorized API access in the PMS module. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Sep 25, 2023

CVE-2023-41300

Vulnerability of parameters not being strictly verified in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

UNKNOWN Published Sep 25, 2023

CVE-2023-41299

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

UNKNOWN Published Sep 25, 2023

CVE-2023-41298

Vulnerability of permission control in the window module. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Sep 25, 2023

CVE-2023-41296

Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidentiality.

UNKNOWN Published Sep 25, 2023

CVE-2023-41295

Vulnerability of improper permission management in the displayengine module. Successful exploitation of this vulnerability may cause the screen to turn dim.

UNKNOWN Published Sep 25, 2023

CVE-2023-39409

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

UNKNOWN Published Sep 25, 2023

CVE-2023-39408

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

UNKNOWN Published Sep 25, 2023

CVE-2023-39406

Permission control vulnerability in the XLayout component. Successful exploitation of this vulnerability may cause apps to forcibly restart.

UNKNOWN Published Aug 13, 2023

CVE-2023-39404

Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vulnerability may cause the device to restart.

UNKNOWN Published Aug 13, 2023

CVE-2023-39403

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

UNKNOWN CVSS 9.1 Published Aug 13, 2023

CVE-2023-39402

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

UNKNOWN CVSS 9.1 Published Aug 13, 2023

CVE-2023-39401

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

UNKNOWN CVSS 9.1 Published Aug 13, 2023

CVE-2023-39400

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

UNKNOWN CVSS 9.1 Published Aug 13, 2023

CVE-2023-39399

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

UNKNOWN CVSS 9.1 Published Aug 13, 2023

CVE-2023-39398

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

UNKNOWN CVSS 9.1 Published Aug 13, 2023

CVE-2023-39397

Input parameter verification vulnerability in the communication system. Successful exploitation of this vulnerability may affect availability.

UNKNOWN CVSS 7.5 Published Aug 13, 2023

CVE-2023-39395

Mismatch vulnerability in the serialization process in the communication system. Successful exploitation of this vulnerability may affect availability.

UNKNOWN CVSS 7.5 Published Aug 13, 2023

CVE-2023-39394

Vulnerability of API privilege escalation in the wifienhance module. Successful exploitation of this vulnerability may cause the arp list to be modified.

UNKNOWN Published Aug 13, 2023

CVE-2023-39391

Vulnerability of system file information leakage in the USB Service module. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Aug 13, 2023

CVE-2023-39390

Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vulnerability may cause the device to restart.

UNKNOWN Published Aug 13, 2023

CVE-2023-39387

Vulnerability of permission control in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

UNKNOWN Published Aug 13, 2023

CVE-2023-39386

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause newly installed apps to fail to restart.

UNKNOWN Published Aug 13, 2023

CVE-2023-39385

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access.

UNKNOWN Published Aug 13, 2023

CVE-2023-39384

Vulnerability of incomplete permission verification in the input method module. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Aug 13, 2023

CVE-2023-39383

Vulnerability of input parameters being not strictly verified in the AMS module. Successful exploitation of this vulnerability may compromise apps' data security.

UNKNOWN Published Aug 13, 2023

CVE-2023-39382

Input verification vulnerability in the audio module. Successful exploitation of this vulnerability may cause virtual machines (VMs) to restart.

UNKNOWN Published Aug 13, 2023

CVE-2023-39381

Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart.

UNKNOWN Published Aug 13, 2023

CVE-2023-39380

Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause audio devices to perform abnormally.

UNKNOWN Published Aug 13, 2023

CVE-2023-39405

Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation of this vulnerability may cause other apps to be executed with escalated privileges.

UNKNOWN Published Aug 13, 2023

CVE-2023-39396

Deserialization vulnerability in the input module. Successful exploitation of this vulnerability may affect availability.

UNKNOWN Published Aug 13, 2023

CVE-2023-39393

Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation of this vulnerability may cause ServiceWifiResources to be maliciously modified and overwritten.

UNKNOWN Published Aug 13, 2023

CVE-2023-39392

Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to be maliciously modified and overwritten.

UNKNOWN Published Aug 13, 2023

CVE-2023-39389

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.

UNKNOWN Published Aug 13, 2023

CVE-2023-39388

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.

UNKNOWN Published Aug 13, 2023

CVE-2023-1695

Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Jul 06, 2023

CVE-2023-1691

Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN Published Jul 06, 2023

CVE-2022-48513

Vulnerability of identity verification being bypassed in the Gallery module. Successful exploitation of this vulnerability may cause out-of-bounds access.

UNKNOWN Published Jul 06, 2023

CVE-2023-34164

Vulnerability of incomplete input parameter verification in the communication framework module. Successful exploitation of this vulnerability may affect availability.

UNKNOWN Published Jul 06, 2023

CVE-2023-3456

Vulnerability of kernel raw address leakage in the hang detector module. Successful exploitation of this vulnerability may affect service confidentiality.

UNKNOWN Published Jul 06, 2023

CVE-2023-37245

Buffer overflow vulnerability in the modem pinctrl module. Successful exploitation of this vulnerability may affect the integrity and availability of the modem.

UNKNOWN Published Jul 06, 2023

CVE-2023-37242

Vulnerability of commands from the modem being intercepted in the atcmdserver module. Attackers may exploit this vulnerability to rewrite the non-volatile random-access memory (NVRAM), or facilitate the exploitation of other vulnerabilities.

UNKNOWN Published Jul 06, 2023

CVE-2023-37241

Input verification vulnerability in the WMS API. Successful exploitation of this vulnerability may cause the device to restart.

UNKNOWN Published Jul 06, 2023

CVE-2023-37240

Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability may cause out-of-bounds read.

UNKNOWN Published Jul 06, 2023

CVE-2023-37239

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program.

UNKNOWN Published Jul 06, 2023

CVE-2023-37238

Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features.

UNKNOWN Published Jul 06, 2023

CVE-2022-48508

Inappropriate authorization vulnerability in the system apps. Successful exploitation of this vulnerability may affect service integrity.

UNKNOWN Published Jul 06, 2023

CVE-2023-3455

Key management vulnerability on system. Successful exploitation of this vulnerability may affect service availability and integrity.

UNKNOWN Published Jul 05, 2023

CVE-2023-34156

Vulnerability of services denied by early fingerprint APIs on HarmonyOS products.Successful exploitation of this vulnerability may cause services to be denied.

UNKNOWN Published Jun 19, 2023

CVE-2023-34163

Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN CVSS 7.5 Published Jun 19, 2023

CVE-2023-34160

Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.

UNKNOWN CVSS 5.3 Published Jun 19, 2023

CVE-2022-48494

Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized.

UNKNOWN Published Jun 19, 2023

CVE-2022-48491

Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time.

UNKNOWN Published Jun 19, 2023

CVE-2022-48495

Vulnerability of unauthorized access to foreground app information.Successful exploitation of this vulnerability may cause foreground app information to be obtained.

UNKNOWN Published Jun 19, 2023

CVE-2022-48488

Vulnerability of bypassing the default desktop security controls.Successful exploitation of this vulnerability may cause unauthorized modifications to the desktop.

UNKNOWN CVSS 5.3 Published Jun 19, 2023

CVE-2022-48496

Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized.

UNKNOWN Published Jun 19, 2023

CVE-2023-34166

Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart.

UNKNOWN CVSS 7.5 Published Jun 19, 2023

CVE-2023-34158

Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.

UNKNOWN CVSS 5.3 Published Jun 19, 2023

CVE-2023-34167

Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.

UNKNOWN CVSS 5.3 Published Jun 19, 2023

CVE-2023-34161

nappropriate authorization vulnerability in the SettingsProvider module.Successful exploitation of this vulnerability may cause features to perform abnormally.

UNKNOWN CVSS 7.5 Published Jun 19, 2023

CVE-2023-34162

Version update determination vulnerability in the user profile module.Successful exploitation of this vulnerability may cause repeated HMS Core updates and cause services to fail.

UNKNOWN CVSS 7.5 Published Jun 19, 2023

CVE-2023-0116

The reminder module lacks an authentication mechanism for broadcasts received. Successful exploitation of this vulnerability may affect availability.

UNKNOWN CVSS 7.5 Published May 26, 2023

CVE-2023-0117

The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitation of this vulnerability may affect availability of features,such as MeeTime.

UNKNOWN CVSS 5.3 Published May 26, 2023

CVE-2023-31226

The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 7.5 Published May 26, 2023

CVE-2023-31225

The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability may cause download failures and affect product availability.

UNKNOWN CVSS 3.3 Published May 26, 2023

CVE-2023-31227

The hwPartsDFR module has a vulnerability in API calling verification. Successful exploitation of this vulnerability may affect device confidentiality.

UNKNOWN CVSS 7.5 Published May 26, 2023

CVE-2023-1696

The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availability.

UNKNOWN CVSS 7.5 Published May 20, 2023

CVE-2023-1694

The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 7.5 Published May 20, 2023

CVE-2023-1693

The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 7.5 Published May 20, 2023

CVE-2023-1692

The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 7.5 Published May 20, 2023

CVE-2022-48314

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 6.5 Published Apr 16, 2023

CVE-2022-48313

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 6.5 Published Apr 16, 2023

CVE-2022-48354

The Bluetooth module has a heap out-of-bounds write vulnerability. Successful exploitation of this vulnerability can cause the Bluetooth process to crash.

UNKNOWN Published Mar 27, 2023

CVE-2022-48348

The MediaProvider module has a vulnerability of unauthorized data read. Successful exploitation of this vulnerability may affect confidentiality and integrity.

UNKNOWN CVSS 9.1 Published Mar 27, 2023

CVE-2022-48360

The facial recognition module has a vulnerability in file permission control. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Mar 27, 2023

CVE-2022-48361

The Always On Display (AOD) has a path traversal vulnerability in theme files. Successful exploitation of this vulnerability may cause a failure in reading AOD theme resources.

UNKNOWN Published Mar 27, 2023

CVE-2023-26549

The SystemUI module has a vulnerability of repeated app restart due to improper parameters. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Mar 27, 2023

CVE-2022-48357

Some products have the double fetch vulnerability. Successful exploitation of this vulnerability may cause denial of service (DoS) attacks to the kernel.

UNKNOWN Published Mar 27, 2023

CVE-2022-48291

The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Mar 27, 2023

CVE-2022-48358

The BatteryHealthActivity has a redirection vulnerability. Successful exploitation of this vulnerability by a malicious app can cause service exceptions.

UNKNOWN Published Mar 27, 2023

CVE-2022-48355

The Bluetooth module has a heap out-of-bounds read vulnerability. Successful exploitation of this vulnerability can cause the Bluetooth process to crash.

UNKNOWN Published Mar 27, 2023

CVE-2022-48347

The MediaProvider module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Mar 27, 2023

CVE-2022-48352

Some smartphones have data initialization issues. Successful exploitation of this vulnerability may cause a system panic.

UNKNOWN CVSS 7.5 Published Mar 27, 2023

CVE-2022-48346

The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Mar 27, 2023

CVE-2022-48351

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect availability.

UNKNOWN CVSS 7.5 Published Mar 27, 2023

CVE-2023-26548

The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of this vulnerability may affect availability.

UNKNOWN Published Mar 27, 2023

CVE-2022-48349

The control component has a spoofing vulnerability. Successful exploitation of this vulnerability may affect confidentiality and availability.

UNKNOWN CVSS 9.1 Published Mar 27, 2023

CVE-2022-48359

The recovery mode for updates has a vulnerability that causes arbitrary disk modification. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN Published Mar 27, 2023

CVE-2023-26547

The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

UNKNOWN Published Mar 27, 2023

CVE-2022-48350

The HUAWEI Messaging app has a vulnerability of unauthorized file access. Successful exploitation of this vulnerability may affect confidentiality.

UNKNOWN CVSS 7.5 Published Mar 27, 2023

CVE-2021-40032

The bone voice ID TA has a vulnerability in information management,Successful exploitation of this vulnerability may affect data confidentiality.

UNKNOWN Published Jan 07, 2022

CVE-2021-40027

The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation of this vulnerability may affect data confidentiality.

UNKNOWN Published Jan 07, 2022

CVE-2021-40014

The bone voice ID trusted application (TA) has a heap overflow vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

UNKNOWN Published Jan 07, 2022