Home/Product/huawei emui
Product

huawei emui

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-34859
all versions
UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confide
5.9MEDIUM
 CVE-2026-34855
all versions
Out-of-bounds write vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availabi
5.7MEDIUM
 CVE-2026-34854
all versions
UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confide
5.7MEDIUM
 CVE-2026-34853
all versions
Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability.
7.7HIGH
 CVE-2026-28553
all versions
Vulnerability of improper permission control in the theme setting module. Impact: Successful exploitation of this vulnerability ma
6.9MEDIUM
 CVE-2026-28548
all versions
Vulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect
7.1HIGH
 CVE-2026-28542
all versions
Permission bypass vulnerability in the system service framework. Impact: Successful exploitation of this vulnerability may affect
7.3HIGH
 CVE-2026-28552
all versions
Out-of-bounds write vulnerability in the IMS module. Impact: Successful exploitation of this vulnerability may affect availabilit
6.5MEDIUM
 CVE-2026-24928
all versions
Out-of-bounds write vulnerability in the file system module. Impact: Successful exploitation of this vulnerability may affect serv
5.8MEDIUM
 CVE-2026-24927
all versions
Out-of-bounds access vulnerability in the frequency modulation module. Impact: Successful exploitation of this vulnerability may a
5.5MEDIUM
 CVE-2026-24920
all versions
Permission control vulnerability in the AMS module. Impact: Successful exploitation of this vulnerability may affect availability.
6.2MEDIUM
 CVE-2026-24919
all versions
Out-of-bounds write vulnerability in the DFX module. Impact: Successful exploitation of this vulnerability may affect availability
6.0MEDIUM
 CVE-2026-24918
all versions
Address read vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availabil
6.8MEDIUM
 CVE-2026-24917
all versions
UAF vulnerability in the security module. Impact: Successful exploitation of this vulnerability may affect availability.
6.5MEDIUM
 CVE-2025-68970
all versions
Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability ma
6.1MEDIUM
 CVE-2025-68963
all versions
Man-in-the-middle attack vulnerability in the Clone module. Impact: Successful exploitation of this vulnerability may affect servi
5.7MEDIUM
 CVE-2025-68959
all versions
Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability ma
6.2MEDIUM
 CVE-2025-66329
all versions
Permission control vulnerability in the window management module. Impact: Successful exploitation of this vulnerability may affect
4.0MEDIUM
 CVE-2025-66325
all versions
Permission control vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affec
6.2MEDIUM
 CVE-2025-58311
all versions
UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and con
5.8MEDIUM
 CVE-2025-58302
all versions
Permission control vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service
8.4HIGH
 CVE-2025-58314
all versions
Vulnerability of accessing invalid memory in the component driver module. Impact: Successful exploitation of this vulnerability wi
6.6MEDIUM
 CVE-2025-58276
all versions
Permission verification vulnerability in the home screen module Impact: Successful exploitation of this vulnerability may affect a
6.8MEDIUM
 CVE-2025-54646
all versions
Vulnerability of inadequate packet length check in the BLE module. Impact: Successful exploitation of this vulnerability may affec
5.1MEDIUM
 CVE-2025-54644
all versions
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful expl
6.6MEDIUM
 CVE-2025-54643
all versions
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful expl
6.6MEDIUM
 CVE-2025-54642
all versions
Issue of buffer overflow caused by insufficient data verification in the kernel gyroscope module. Impact: Successful exploitation
6.7MEDIUM
 CVE-2025-54641
all versions
Issue of buffer overflow caused by insufficient data verification in the kernel acceleration module. Impact: Successful exploitati
6.7MEDIUM
 CVE-2025-54637
all versions
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful expl
4.4MEDIUM
 CVE-2025-54636
all versions
Issue of buffer overflow caused by insufficient data verification in the kernel drop detection module. Impact: Successful exploita
4.4MEDIUM
 CVE-2025-54632
all versions
Vulnerability of insufficient data length verification in the HVB module. Impact: Successful exploitation of this vulnerability ma
6.8MEDIUM
 CVE-2025-54629
all versions
Race condition issue occurring in the physical page import process of the memory management module. Impact: Successful exploitatio
6.7MEDIUM
 CVE-2025-54628
all versions
Vulnerability of incomplete verification information in the communication module. Impact: Successful exploitation of this vulnerab
5.3MEDIUM
 CVE-2025-54611
all versions
EXTRA_REFERRER resource read vulnerability in the Gallery module. Impact: Successful exploitation of this vulnerability may affect
7.3HIGH
 CVE-2025-53186
all versions
Vulnerability that allows third-party call apps to send broadcasts without verification in the audio framework module Impact: Succ
5.9MEDIUM
 CVE-2025-53185
all versions
Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released mem
6.6MEDIUM
 CVE-2025-53178
all versions
Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect th
4.8MEDIUM
 CVE-2025-53177
all versions
Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect th
3.9LOW
 CVE-2025-48902
all versions
Vulnerability of uncontrolled system resource applications in the setting module Impact: Successful exploitation of this vulnerabi
6.6MEDIUM
 CVE-2025-31175
all versions
Deserialization mismatch vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect ser
8.4HIGH
 CVE-2025-31170
all versions
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect
8.4HIGH
 CVE-2024-58127
all versions
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect
8.4HIGH
 CVE-2024-58126
all versions
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect
8.4HIGH
 CVE-2024-58125
all versions
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect
8.4HIGH
 CVE-2024-58124
all versions
Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect
8.4HIGH
 CVE-2024-58044
all versions
Permission verification bypass vulnerability in the notification module Impact: Successful exploitation of this vulnerability may
8.4HIGH
 CVE-2024-58043
all versions
Permission bypass vulnerability in the window module Impact: Successful exploitation of this vulnerability may affect service conf
7.3HIGH
 CVE-2024-57961
all versions
Out-of-bounds write vulnerability in the emcom module Impact: Successful exploitation of this vulnerability may cause features to
6.8MEDIUM
 CVE-2024-57960
all versions
Input verification vulnerability in the ExternalStorageProvider module Impact: Successful exploitation of this vulnerability may a
7.7HIGH
 CVE-2024-57959
all versions
Use-After-Free (UAF) vulnerability in the display module Impact: Successful exploitation of this vulnerability may cause features
6.1MEDIUM
 CVE-2024-57958
all versions
Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this vulnerability may cause features
5.7MEDIUM
 CVE-2024-56450
all versions
Buffer overflow vulnerability in the component driver module Impact: Successful exploitation of this vulnerability may affect avai
6.3MEDIUM
 CVE-2024-56449
all versions
Privilege escalation vulnerability in the Account module Impact: Successful exploitation of this vulnerability may affect service
6.6MEDIUM
 CVE-2024-56448
all versions
Vulnerability of improper access control in the home screen widget module Impact: Successful exploitation of this vulnerability ma
6.7MEDIUM
 CVE-2024-56447
all versions
Vulnerability of improper permission control in the window management module Impact: Successful exploitation of this vulnerability
7.8HIGH
 CVE-2024-56442
all versions
Vulnerability of native APIs not being implemented in the NFC service module Impact: Successful exploitation of this vulnerability
5.5MEDIUM
 CVE-2024-56441
all versions
Race condition vulnerability in the Bastet module Impact: Successful exploitation of this vulnerability may affect service confide
4.1MEDIUM
 CVE-2024-56440
all versions
Permission control vulnerability in the Connectivity module Impact: Successful exploitation of this vulnerability may cause featur
6.2MEDIUM
 CVE-2024-56438
all versions
Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may a
6.0MEDIUM
 CVE-2023-52955
all versions
Vulnerability of improper authentication in the ANS system service module Impact: Successful exploitation of this vulnerability ma
6.5MEDIUM
 CVE-2023-52954
all versions
Vulnerability of improper permission control in the Gallery module Impact: Successful exploitation of this vulnerability may affec
4.4MEDIUM
 CVE-2023-52953
all versions
Path traversal vulnerability in the Medialibrary module Impact: Successful exploitation of this vulnerability will affect integrit
6.2MEDIUM
 CVE-2024-56434
all versions
UAF vulnerability in the device node access module Impact: Successful exploitation of this vulnerability may cause service excepti
4.4MEDIUM
 CVE-2024-54101
all versions
Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect
6.2MEDIUM
 CVE-2024-54100
all versions
Vulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may caus
6.2MEDIUM
 CVE-2024-54099
all versions
File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability will affect integrity and con
6.7MEDIUM
 CVE-2024-54098
all versions
Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect se
8.5HIGH
 CVE-2024-54097
all versions
Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementatio
7.3HIGH
 CVE-2024-54096
all versions
Vulnerability of improper access control in the MTP module Impact: Successful exploitation of this vulnerability may affect integr
5.3MEDIUM
 CVE-2024-51530
all versions
LaunchAnywhere vulnerability in the account module Impact: Successful exploitation of this vulnerability may affect service confid
6.6MEDIUM
 CVE-2024-51529
all versions
Data verification vulnerability in the battery module Impact: Successful exploitation of this vulnerability may affect function s
5.5MEDIUM
 CVE-2024-51528
all versions
Vulnerability of improper log printing in the Super Home Screen module Impact: Successful exploitation of this vulnerability may a
4.0MEDIUM
 CVE-2024-51527
all versions
Permission control vulnerability in the Gallery app Impact: Successful exploitation of this vulnerability may affect service confi
5.1MEDIUM
 CVE-2024-51510
all versions
Out-of-bounds access vulnerability in the logo module Impact: Successful exploitation of this vulnerability may affect service con
7.6HIGH
 CVE-2024-9136
all versions
Access permission verification vulnerability in the App Multiplier module Impact: Successful exploitation of this vulnerability ma
6.7MEDIUM
 CVE-2024-47294
all versions
Access permission verification vulnerability in the input method framework module Impact: Successful exploitation of this vulnerab
4.4MEDIUM
 CVE-2024-47293
all versions
Out-of-bounds write vulnerability in the HAL-WIFI module Impact: Successful exploitation of this vulnerability may affect availabi
4.7MEDIUM
 CVE-2024-47292
all versions
Path traversal vulnerability in the Bluetooth module Impact: Successful exploitation of this vulnerability may affect service conf
6.2MEDIUM
 CVE-2024-47291
all versions
Permission vulnerability in the ActivityManagerService (AMS) module Impact: Successful exploitation of this vulnerability may affe
5.6MEDIUM
 CVE-2024-47290
all versions
Input validation vulnerability in the USB service module Impact: Successful exploitation of this vulnerability may affect availabi
5.5MEDIUM
 CVE-2024-8298
all versions
Memory request vulnerability in the memory management module Impact: Successful exploitation of this vulnerability may affect serv
6.2MEDIUM
 CVE-2024-45449
all versions
Access permission verification vulnerability in the ringtone setting module Impact: Successful exploitation of this vulnerability
5.1MEDIUM
 CVE-2024-45448
all versions
Page table protection configuration vulnerability in the trusted firmware module Impact: Successful exploitation of this vulnerabi
4.1MEDIUM
 CVE-2024-45447
all versions
Access control vulnerability in the camera framework module Impact: Successful exploitation of this vulnerability may affect servi
4.4MEDIUM
 CVE-2024-45446
all versions
Access permission verification vulnerability in the camera driver module Impact: Successful exploitation of this vulnerability wil
5.5MEDIUM
 CVE-2024-45445
all versions
Vulnerability of resources not being closed or released in the keystore module Impact: Successful exploitation of this vulnerabili
4.0MEDIUM
 CVE-2024-45444
all versions
Access permission verification vulnerability in the WMS module Impact: Successful exploitation of this vulnerability may affect se
5.5MEDIUM
 CVE-2024-45443
all versions
Directory traversal vulnerability in the cust module Impact: Successful exploitation of this vulnerability will affect availabilit
6.1MEDIUM
 CVE-2024-45450
all versions
Permission control vulnerability in the software update module. Impact: Successful exploitation of this vulnerability may affect s
4.0MEDIUM
 CVE-2024-45442
all versions
Vulnerability of permission verification for APIs in the DownloadProviderMain module Impact: Successful exploitation of this vulne
5.1MEDIUM
 CVE-2024-45441
all versions
Input verification vulnerability in the system service module Impact: Successful exploitation of this vulnerability will affect av
6.2MEDIUM
 CVE-2024-42039
all versions
Access control vulnerability in the SystemUI module Impact: Successful exploitation of this vulnerability may affect service confi
4.3MEDIUM
 CVE-2024-42038
all versions
Vulnerability of PIN enhancement failures in the screen lock module Impact: Successful exploitation of this vulnerability may affe
8.8HIGH
 CVE-2024-42037
all versions
Vulnerability of uncaught exceptions in the Graphics module Impact: Successful exploitation of this vulnerability may affect servi
9.3CRITICAL
 CVE-2024-42036
all versions
Access permission verification vulnerability in the Notepad module Impact: Successful exploitation of this vulnerability may affec
2.5LOW
 CVE-2024-42035
all versions
Permission control vulnerability in the App Multiplier module Impact:Successful exploitation of this vulnerability may affect func
8.4HIGH
 CVE-2024-42034
all versions
LaunchAnywhere vulnerability in the account module. Impact: Successful exploitation of this vulnerability may affect service confi
6.6MEDIUM
 CVE-2024-42033
all versions
Access control vulnerability in the security verification module mpact: Successful exploitation of this vulnerability will affect
6.9MEDIUM
 CVE-2024-42032
all versions
Access permission verification vulnerability in the Contacts module Impact: Successful exploitation of this vulnerability may affe
4.4MEDIUM
 CVE-2024-42031
all versions
Access permission verification vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may aff
7.5HIGH
 CVE-2024-42030
all versions
Access permission verification vulnerability in the content sharing pop-up module Impact: Successful exploitation of this vulnerab
6.2MEDIUM
 CVE-2023-7265
all versions
Permission verification vulnerability in the lock screen module Impact: Successful exploitation of this vulnerability may affect a
4.0MEDIUM
 CVE-2024-39674
all versions
Plaintext vulnerability in the Gallery search module. Impact: Successful exploitation of this vulnerability will affect availabili
6.2MEDIUM
 CVE-2024-39673
all versions
Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerabilit
6.8MEDIUM
 CVE-2024-39672
all versions
Memory request logic vulnerability in the memory module. Impact: Successful exploitation of this vulnerability will affect integri
8.4HIGH
 CVE-2024-39671
all versions
Access control vulnerability in the security verification module. Impact: Successful exploitation of this vulnerability may affect
9.3CRITICAL
 CVE-2024-39670
all versions
Privilege escalation vulnerability in the account synchronisation module. Impact: Successful exploitation of this vulnerability wi
6.2MEDIUM
 CVE-2023-7271
all versions
Privilege escalation vulnerability in the NMS module Impact: Successful exploitation of this vulnerability will affect availabilit
5.5MEDIUM
 CVE-2024-5465
all versions
Function vulnerabilities in the Calendar module Impact: Successful exploitation of this vulnerability will affect availability.
5.9MEDIUM
 CVE-2024-5464
all versions
Vulnerability of insufficient permission verification in the NearLink module Impact: Successful exploitation of this vulnerability
4.0MEDIUM
 CVE-2024-36503
all versions
Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availabili
7.3HIGH
 CVE-2024-36502
all versions
Out-of-bounds read vulnerability in the audio module Impact: Successful exploitation of this vulnerability will affect availabilit
7.9HIGH
 CVE-2024-36501
all versions
Memory management vulnerability in the boottime module Impact: Successful exploitation of this vulnerability can affect integrity.
5.6MEDIUM
 CVE-2024-36500
all versions
Privilege escalation vulnerability in the AMS module Impact: Successful exploitation of this vulnerability may affect service conf
7.8HIGH
 CVE-2024-36499
all versions
Vulnerability of unauthorized screenshot capturing in the WMS module Impact: Successful exploitation of this vulnerability may aff
6.8MEDIUM
 CVE-2024-4046
all versions
Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability.
6.4MEDIUM
 CVE-2024-32999
all versions
Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability.
6.8MEDIUM
 CVE-2024-32998
all versions
NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this vulnerability will affect availabili
5.9MEDIUM
 CVE-2024-32997
all versions
Race condition vulnerability in the binder driver module Impact: Successful exploitation of this vulnerability will affect availab
8.4HIGH
 CVE-2024-32996
all versions
Privilege escalation vulnerability in the account module Impact: Successful exploitation of this vulnerability will affect availab
6.2MEDIUM
 CVE-2024-32995
all versions
Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this vulnerability will affect availabi
6.2MEDIUM
 CVE-2024-32993
all versions
Out-of-bounds access vulnerability in the memory module Impact: Successful exploitation of this vulnerability will affect availabi
5.6MEDIUM
 CVE-2024-32992
all versions
Insufficient verification vulnerability in the baseband module Impact: Successful exploitation of this vulnerability will affect a
7.5HIGH
 CVE-2024-32991
all versions
Permission verification vulnerability in the wpa_supplicant module Impact: Successful exploitation of this vulnerability will affe
7.5HIGH
 CVE-2024-32990
all versions
Permission verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability wi
6.1MEDIUM
 CVE-2024-32989
all versions
Insufficient verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability
3.3LOW
 CVE-2023-52720
all versions
Race condition vulnerability in the soundtrigger module Impact: Successful exploitation of this vulnerability will affect availabi
4.1MEDIUM
 CVE-2023-52719
all versions
Privilege escalation vulnerability in the PMS module Impact: Successful exploitation of this vulnerability may affect service conf
7.1HIGH
 CVE-2023-52384
all versions
Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability.
4.7MEDIUM
 CVE-2023-52383
all versions
Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability.
4.7MEDIUM
 CVE-2024-27897
all versions
Input verification vulnerability in the call module. Impact: Successful exploitation of this vulnerability may affect service conf
7.5HIGH
 CVE-2024-27896
all versions
Input verification vulnerability in the log module. Impact: Successful exploitation of this vulnerability can affect integrity.
7.5HIGH
 CVE-2023-52386
all versions
Out-of-bounds write vulnerability in the RSMC module. Impact: Successful exploitation of this vulnerability will affect availabili
7.5HIGH
 CVE-2023-52385
all versions
Out-of-bounds write vulnerability in the RSMC module. Impact: Successful exploitation of this vulnerability will affect availabili
6.2MEDIUM
 CVE-2023-52364
all versions
Vulnerability of input parameters being not strictly verified in the RSMC module. Impact: Successful exploitation of this vulnerab
6.3MEDIUM
 CVE-2023-52554
all versions
Permission control vulnerability in the Bluetooth module. Impact: Successful exploitation of this vulnerability may affect service
6.5MEDIUM
 CVE-2023-52553
all versions
Race condition vulnerability in the Wi-Fi module. Impact: Successful exploitation of this vulnerability will affect availability.
7.4HIGH
 CVE-2023-52552
all versions
Input verification vulnerability in the power module. Impact: Successful exploitation of this vulnerability will affect availabili
7.5HIGH
 CVE-2023-52551
all versions
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect s
5.3MEDIUM
 CVE-2023-52550
all versions
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect s
7.5HIGH
 CVE-2023-52549
all versions
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect s
7.5HIGH
 CVE-2023-52546
all versions
Vulnerability of package name verification being bypassed in the Calendar app. Impact: Successful exploitation of this vulnerabili
7.5HIGH
 CVE-2023-52545
all versions
Vulnerability of undefined permissions in the Calendar app. Impact: Successful exploitation of this vulnerability will affect avai
7.5HIGH
 CVE-2023-52544
all versions
Vulnerability of file path verification being bypassed in the email module. Impact: Successful exploitation of this vulnerability
4.3MEDIUM
 CVE-2023-52543
all versions
Permission verification vulnerability in the system module. Impact: Successful exploitation of this vulnerability will affect avai
6.2MEDIUM
 CVE-2023-52542
all versions
Permission verification vulnerability in the system module. Impact: Successful exploitation of this vulnerability will affect avai
6.5MEDIUM
 CVE-2023-52541
all versions
Authentication vulnerability in the API for app pre-loading. Impact: Successful exploitation of this vulnerability may affect serv
7.5HIGH
 CVE-2023-52540
all versions
Vulnerability of improper authentication in the Iaware module. Impact: Successful exploitation of this vulnerability will affect a
7.5HIGH
 CVE-2023-52539
all versions
Permission verification vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect ser
7.5HIGH
 CVE-2023-52538
all versions
Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerabili
9.1CRITICAL
 CVE-2023-52537
all versions
Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerabili
7.5HIGH
 CVE-2023-52388
all versions
Permission control vulnerability in the clock module. Impact: Successful exploitation of this vulnerability will affect availabili
7.5HIGH
 CVE-2023-52359
all versions
Vulnerability of permission verification in some APIs in the ActivityTaskManagerService module. Impact: Successful exploitation of
7.5HIGH
 CVE-2024-30418
all versions
Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulner
7.5HIGH
 CVE-2024-30417
all versions
Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affe
7.5HIGH
 CVE-2024-30416
all versions
Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will aff
7.5HIGH
 CVE-2023-52717
all versions
Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect
5.3MEDIUM
 CVE-2023-52716
all versions
Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation
7.5HIGH
 CVE-2023-52714
all versions
Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerabili
7.5HIGH
 CVE-2023-52713
all versions
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerabilit
7.7HIGH
 CVE-2024-30415
all versions
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerabilit
9.1CRITICAL
 CVE-2024-30414
all versions
Command injection vulnerability in the AccountManager module. Impact: Successful exploitation of this vulnerability may affect ser
7.5HIGH
 CVE-2024-30413
all versions
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerabilit
7.5HIGH
 CVE-2023-52381
all versions
Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentialit
9.8CRITICAL
 CVE-2023-52380
all versions
Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service conf
4.3MEDIUM
 CVE-2023-52379
all versions
Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service c
7.5HIGH
 CVE-2023-52378
all versions
Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cau
9.8CRITICAL
 CVE-2022-48621
all versions
Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability m
7.5HIGH
 CVE-2023-52377
all versions
Vulnerability of input data not being verified in the cellular data module.Successful exploitation of this vulnerability may cause
7.4HIGH
 CVE-2023-52376
all versions
Information management vulnerability in the Gallery module.Successful exploitation of this vulnerability may affect service confid
7.5HIGH
 CVE-2023-52375
all versions
Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect avai
7.5HIGH
 CVE-2023-52374
all versions
Permission control vulnerability in the package management module.Successful exploitation of this vulnerability may affect service
7.5HIGH
 CVE-2023-52373
all versions
Vulnerability of permission verification in the content sharing pop-up module.Successful exploitation of this vulnerability may ca
7.5HIGH
 CVE-2023-52372
all versions
Vulnerability of input parameter verification in the motor module.Successful exploitation of this vulnerability may affect availab
7.5HIGH
 CVE-2023-52371
all versions
Vulnerability of null references in the motor module.Successful exploitation of this vulnerability may affect availability.
3.5LOW
 CVE-2023-52370
all versions
Stack overflow vulnerability in the network acceleration module.Successful exploitation of this vulnerability may cause unauthoriz
9.8CRITICAL
 CVE-2023-52369
all versions
Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and i
9.1CRITICAL
 CVE-2023-52368
all versions
Input verification vulnerability in the account module.Successful exploitation of this vulnerability may cause features to perform
5.3MEDIUM
 CVE-2023-52367
all versions
Vulnerability of improper access control in the media library module.Successful exploitation of this vulnerability may affect serv
7.7HIGH
 CVE-2023-52366
all versions
Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause
7.5HIGH
 CVE-2023-52387
all versions
Resource reuse vulnerability in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality.
7.5HIGH
 CVE-2023-52365
all versions
Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause
5.3MEDIUM
 CVE-2023-52363
all versions
Vulnerability of defects introduced in the design process in the Control Panel module.Successful exploitation of this vulnerabilit
5.3MEDIUM
 CVE-2023-52362
all versions
Permission management vulnerability in the lock screen module.Successful exploitation of this vulnerability may affect availabilit
7.5HIGH
 CVE-2023-52360
all versions
Logic vulnerabilities in the baseband.Successful exploitation of this vulnerability may affect service integrity.
7.5HIGH
 CVE-2023-52358
all versions
Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect a
6.2MEDIUM
 CVE-2023-52357
all versions
Vulnerability of serialization/deserialization mismatch in the vibration framework.Successful exploitation of this vulnerability m
7.5HIGH
 CVE-2023-52097
all versions
Vulnerability of foreground service restrictions being bypassed in the NMS module.Successful exploitation of this vulnerability ma
7.5HIGH
 CVE-2023-52104
all versions
Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service
7.5HIGH
 CVE-2023-52103
all versions
Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read.
9.8CRITICAL
 CVE-2023-52102
all versions
Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service
7.5HIGH
 CVE-2023-52101
all versions
Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availabilit
9.1CRITICAL
 CVE-2023-52099
all versions
Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability m
7.5HIGH
 CVE-2023-52116
all versions
Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may caus
7.5HIGH
 CVE-2023-52114
all versions
Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service in
7.5HIGH
 CVE-2023-52108
all versions
Vulnerability of process priorities being raised in the ActivityManagerService module. Successful exploitation of this vulnerabili
7.5HIGH
 CVE-2023-52107
all versions
Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affe
7.5HIGH
 CVE-2023-52098
all versions
Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2023-52113
all versions
launchAnyWhere vulnerability in the ActivityManagerService module. Successful exploitation of this vulnerability will affect avail
7.5HIGH
 CVE-2023-52112
all versions
Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation of this vulnerability may cause fe
5.3MEDIUM
 CVE-2023-52111
all versions
Authorization vulnerability in the BootLoader module. Successful exploitation of this vulnerability may affect service integrity.
7.5HIGH
 CVE-2023-52109
all versions
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-4566
all versions
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-44117
all versions
Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-44112
all versions
Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect c
7.5HIGH
 CVE-2023-6273
all versions
Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may c
5.3MEDIUM
 CVE-2023-49248
all versions
Vulnerability of unauthorized file access in the Settings app. Successful exploitation of this vulnerability may cause unauthorize
5.5MEDIUM
 CVE-2023-49247
all versions
Permission verification vulnerability in distributed scenarios. Successful exploitation of this vulnerability may affect service c
7.5HIGH
 CVE-2023-49246
all versions
Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service
7.5HIGH
 CVE-2023-49245
all versions
Unauthorized access vulnerability in the Huawei Share module. Successful exploitation of this vulnerability may affect service con
7.5HIGH
 CVE-2023-49244
all versions
Permission management vulnerability in the multi-user module. Successful exploitation of this vulnerability may affect service con
7.5HIGH
 CVE-2023-49243
all versions
Vulnerability of unauthorized access to email attachments in the email module. Successful exploitation of this vulnerability may a
7.5HIGH
 CVE-2023-49242
all versions
Free broadcast vulnerability in the running management module. Successful exploitation of this vulnerability may affect service co
7.5HIGH
 CVE-2023-49241
all versions
API permission control vulnerability in the network management module. Successful exploitation of this vulnerability may affect se
7.5HIGH
 CVE-2023-49240
all versions
Unauthorized access vulnerability in the launcher module. Successful exploitation of this vulnerability may affect service confide
7.5HIGH
 CVE-2023-49239
all versions
Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service
7.5HIGH
 CVE-2023-46773
all versions
Permission management vulnerability in the PMS module. Successful exploitation of this vulnerability may cause privilege escalatio
9.8CRITICAL
 CVE-2023-44113
all versions
Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module. Successful exploitation of
7.5HIGH
 CVE-2023-44099
all versions
Vulnerability of data verification errors in the kernel module. Successful exploitation of this vulnerability may cause WLAN inter
7.5HIGH
 CVE-2023-46759
all versions
Permission control vulnerability in the call module. Successful exploitation of this vulnerability may affect service confidential
7.5HIGH
 CVE-2023-46758
all versions
Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may caus
7.5HIGH
 CVE-2023-46756
all versions
Permission control vulnerability in the window management module. Successful exploitation of this vulnerability may cause maliciou
5.3MEDIUM
 CVE-2023-46774
all versions
Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.
7.5HIGH
 CVE-2023-46772
all versions
Vulnerability of parameters being out of the value range in the QMI service module. Successful exploitation of this vulnerability
7.5HIGH
 CVE-2023-46767
all versions
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exc
7.5HIGH
 CVE-2023-46766
all versions
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exc
7.5HIGH
 CVE-2023-46765
all versions
Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.
7.5HIGH
 CVE-2023-46764
all versions
Unauthorized startup vulnerability of background apps. Successful exploitation of this vulnerability may cause background apps to
5.3MEDIUM
 CVE-2023-46763
all versions
Vulnerability of background app permission management in the framework module. Successful exploitation of this vulnerability may c
5.3MEDIUM
 CVE-2023-46762
all versions
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exc
7.5HIGH
 CVE-2023-46761
all versions
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exc
7.5HIGH
 CVE-2023-46760
all versions
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exc
7.5HIGH
 CVE-2023-46755
all versions
Vulnerability of input parameters being not strictly verified in the input. Successful exploitation of this vulnerability may caus
5.3MEDIUM
 CVE-2022-48613
all versions
Race condition vulnerability in the kernel module. Successful exploitation of this vulnerability may cause variable values to be r
5.9MEDIUM
 CVE-2023-46771
all versions
Security vulnerability in the face unlock module. Successful exploitation of this vulnerability may affect service confidentiality
7.5HIGH
 CVE-2023-44098
all versions
Vulnerability of missing encryption in the card management module. Successful exploitation of this vulnerability may affect servic
7.5HIGH
 CVE-2023-44115
all versions
Vulnerability of improper permission control in the Booster module. Impact: Successful exploitation of this vulnerability may affe
7.5HIGH
 CVE-2023-5801
all versions
Vulnerability of identity verification being bypassed in the face unlock module. Successful exploitation of this vulnerability wil
9.1CRITICAL
 CVE-2023-46770
all versions
Out-of-bounds vulnerability in the sensor module. Successful exploitation of this vulnerability may cause mistouch prevention erro
7.5HIGH
 CVE-2023-46769
all versions
Use-After-Free (UAF) vulnerability in the dubai module. Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2023-46768
all versions
Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnorm
7.5HIGH
 CVE-2023-44119
all versions
Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availa
7.5HIGH
 CVE-2023-44118
all versions
Vulnerability of undefined permissions in the MeeTime module.Successful exploitation of this vulnerability will affect availabilit
9.1CRITICAL
 CVE-2023-44116
all versions
Vulnerability of access permissions not being strictly verified in the APPWidget module.Successful exploitation of this vulnerabil
9.8CRITICAL
 CVE-2023-44114
all versions
Out-of-bounds array vulnerability in the dataipa module.Successful exploitation of this vulnerability may affect service confident
7.5HIGH
 CVE-2023-44108
all versions
Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to
7.5HIGH
 CVE-2023-44105
all versions
Vulnerability of permissions not being strictly verified in the window management module.Successful exploitation of this vulnerabi
9.8CRITICAL
 CVE-2023-44111
all versions
Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect
7.5HIGH
 CVE-2023-44110
all versions
Out-of-bounds access vulnerability in the audio module.Successful exploitation of this vulnerability may affect availability.
4.3MEDIUM
 CVE-2023-44106
all versions
API permission management vulnerability in the Fwk-Display module.Successful exploitation of this vulnerability may cause features
9.8CRITICAL
 CVE-2023-44104
all versions
Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect servic
7.5HIGH
 CVE-2023-44103
all versions
Out-of-bounds read vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confiden
7.5HIGH
 CVE-2023-44102
all versions
Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability can cause the Blu
5.3MEDIUM
 CVE-2023-44100
all versions
Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect servic
7.5HIGH
 CVE-2023-44097
all versions
Vulnerability of the permission to access device SNs being improperly managed.Successful exploitation of this vulnerability may af
7.5HIGH
 CVE-2023-44095
all versions
Use-After-Free (UAF) vulnerability in the surfaceflinger module.Successful exploitation of this vulnerability can cause system cra
7.5HIGH
 CVE-2023-41304
all versions
Parameter verification vulnerability in the window module.Successful exploitation of this vulnerability may cause the size of an a
5.3MEDIUM
 CVE-2023-44109
all versions
Clone vulnerability in the huks ta module.Successful exploitation of this vulnerability may affect service confidentiality.
7.5HIGH
 CVE-2023-44096
all versions
Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect
7.5HIGH
 CVE-2023-44094
all versions
Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to
5.3MEDIUM
 CVE-2023-44093
all versions
Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerabilit
7.5HIGH
 CVE-2023-4565
all versions
Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the ho
5.3MEDIUM
 CVE-2023-41312
all versions
Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause several apps to be a
5.3MEDIUM
 CVE-2023-41311
all versions
Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause an app to be activat
5.3MEDIUM
 CVE-2023-41310
all versions
Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this vulnerability may cause malicious apps
3.3LOW
 CVE-2023-41309
all versions
Permission control vulnerability in the MediaPlaybackController module. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2023-41308
all versions
Screenshot vulnerability in the input module. Successful exploitation of this vulnerability may affect confidentiality.
7.5HIGH
 CVE-2023-41307
all versions
Memory overwriting vulnerability in the security module. Successful exploitation of this vulnerability may affect availability.
7.5HIGH
 CVE-2023-41306
all versions
Vulnerability of mutex management in the bone voice ID trusted application (TA) module. Successful exploitation of this vulnerabil
3.7LOW
 CVE-2023-41305
all versions
Vulnerability of 5G messages being sent without being encrypted in a VPN environment in the SMS message module. Successful exploit
7.5HIGH
 CVE-2022-48606
all versions
Stability-related vulnerability in the binder background management and control module. Successful exploitation of this vulnerabil
7.5HIGH
 CVE-2023-41303
all versions
Command injection vulnerability in the distributed file system module. Successful exploitation of this vulnerability may cause var
7.5HIGH
 CVE-2023-41302
all versions
Redirection permission verification vulnerability in the home screen module. Successful exploitation of this vulnerability may cau
7.5HIGH
 CVE-2023-41301
all versions
Vulnerability of unauthorized API access in the PMS module. Successful exploitation of this vulnerability may cause features to pe
7.5HIGH
 CVE-2023-41300
all versions
Vulnerability of parameters not being strictly verified in the PMS module. Successful exploitation of this vulnerability may cause
7.5HIGH
 CVE-2023-41293
all versions
Data security classification vulnerability in the DDMP module. Successful exploitation of this vulnerability may affect confidenti
7.5HIGH
 CVE-2022-48605
all versions
Input verification vulnerability in the fingerprint module. Successful exploitation of this vulnerability will affect confidential
9.8CRITICAL
 CVE-2023-41299
all versions
DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.
7.5HIGH
 CVE-2023-41298
all versions
Vulnerability of permission control in the window module. Successful exploitation of this vulnerability may affect confidentiality
7.5HIGH
 CVE-2023-41297
all versions
Vulnerability of defects introduced in the design process in the HiviewTunner module. Successful exploitation of this vulnerabilit
9.8CRITICAL
 CVE-2023-41296
all versions
Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity an
9.1CRITICAL
 CVE-2023-41295
all versions
Vulnerability of improper permission management in the displayengine module. Successful exploitation of this vulnerability may cau
5.3MEDIUM
 CVE-2023-39409
all versions
DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.
7.5HIGH
 CVE-2023-39408
all versions
DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.
7.5HIGH
 CVE-2023-39406
all versions
Permission control vulnerability in the XLayout component. Successful exploitation of this vulnerability may cause apps to forcibl
7.5HIGH
 CVE-2023-39404
all versions
Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vul
7.5HIGH
 CVE-2023-39403
all versions
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files
9.1CRITICAL
 CVE-2023-39402
all versions
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files
9.1CRITICAL
 CVE-2023-39401
all versions
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files
9.1CRITICAL
 CVE-2023-39400
all versions
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files
9.1CRITICAL
 CVE-2023-39399
all versions
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files
9.1CRITICAL
 CVE-2023-39398
all versions
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files
9.1CRITICAL
 CVE-2023-39397
all versions
Input parameter verification vulnerability in the communication system. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2023-39395
all versions
Mismatch vulnerability in the serialization process in the communication system. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-39394
all versions
Vulnerability of API privilege escalation in the wifienhance module. Successful exploitation of this vulnerability may cause the a
7.5HIGH
 CVE-2023-39391
all versions
Vulnerability of system file information leakage in the USB Service module. Successful exploitation of this vulnerability may affe
7.5HIGH
 CVE-2023-39390
all versions
Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vul
7.5HIGH
 CVE-2023-39387
all versions
Vulnerability of permission control in the window management module. Successful exploitation of this vulnerability may cause malic
5.3MEDIUM
 CVE-2023-39386
all versions
Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-39385
all versions
Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may
9.1CRITICAL
 CVE-2021-46895
all versions
Vulnerability of defects introduced in the design process in the Multi-Device Task Center. Successful exploitation of this vulnera
9.1CRITICAL
 CVE-2023-39405
all versions
Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation of this vulnerability may cause o
9.8CRITICAL
 CVE-2023-39396
all versions
Deserialization vulnerability in the input module. Successful exploitation of this vulnerability may affect availability.
7.5HIGH
 CVE-2023-39393
all versions
Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation of this vulnerability may cause S
7.5HIGH
 CVE-2023-39392
all versions
Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to b
7.5HIGH
 CVE-2023-39389
all versions
Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-39388
all versions
Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-39384
all versions
Vulnerability of incomplete permission verification in the input method module. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-39383
all versions
Vulnerability of input parameters being not strictly verified in the AMS module. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-39382
all versions
Input verification vulnerability in the audio module. Successful exploitation of this vulnerability may cause virtual machines (VM
7.5HIGH
 CVE-2023-39381
all versions
Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to rest
7.5HIGH
 CVE-2023-39380
all versions
Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause audio devices to per
7.5HIGH
 CVE-2023-3456
all versions
Vulnerability of kernel raw address leakage in the hang detector module. Successful exploitation of this vulnerability may affect
5.3MEDIUM
 CVE-2023-37245
all versions
Buffer overflow vulnerability in the modem pinctrl module. Successful exploitation of this vulnerability may affect the integrity
9.1CRITICAL
 CVE-2023-37242
all versions
Vulnerability of commands from the modem being intercepted in the atcmdserver module. Attackers may exploit this vulnerability to
9.8CRITICAL
 CVE-2023-37241
all versions
Input verification vulnerability in the WMS API. Successful exploitation of this vulnerability may cause the device to restart.
7.5HIGH
 CVE-2023-37240
all versions
Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability
9.1CRITICAL
 CVE-2023-37239
all versions
Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerab
7.5HIGH
 CVE-2023-37238
all versions
Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successfu
5.3MEDIUM
 CVE-2023-34164
all versions
Vulnerability of incomplete input parameter verification in the communication framework module. Successful exploitation of this vu
7.5HIGH
 CVE-2023-1695
all versions
Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2023-1691
all versions
Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2022-48520
all versions
Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality
7.5HIGH
 CVE-2022-48519
all versions
Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality
7.5HIGH
 CVE-2022-48518
all versions
Vulnerability of signature verification in the iaware system being initialized later than the time when the system broadcasts are
5.5MEDIUM
 CVE-2022-48517
all versions
Unauthorized service access vulnerability in the DSoftBus module. Successful exploitation of this vulnerability will affect availa
7.5HIGH
 CVE-2022-48516
all versions
Vulnerability that a unique value can be obtained by a third-party app in the DSoftBus module. Successful exploitation of this vul
7.5HIGH
 CVE-2022-48515
all versions
Vulnerability of inappropriate permission control in Nearby. Successful exploitation of this vulnerability may affect service conf
7.5HIGH
 CVE-2022-48513
all versions
Vulnerability of identity verification being bypassed in the Gallery module. Successful exploitation of this vulnerability may cau
9.8CRITICAL
 CVE-2022-48512
all versions
Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of this vulnerability may cause the ima
9.8CRITICAL
 CVE-2022-48511
all versions
Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. Successful exploitation of this vulner
9.8CRITICAL
 CVE-2022-48510
all versions
Input verification vulnerability in the AMS module. Successful exploitation of this vulnerability will cause unauthorized operatio
9.8CRITICAL
 CVE-2022-48509
all versions
Race condition vulnerability due to multi-thread access to mutually exclusive resources in Huawei Share. Successful exploitation o
5.9MEDIUM
 CVE-2022-48508
all versions
Inappropriate authorization vulnerability in the system apps. Successful exploitation of this vulnerability may affect service int
7.5HIGH
 CVE-2022-48507
all versions
Vulnerability of identity verification being bypassed in the storage module. Successful exploitation of this vulnerability may aff
7.5HIGH
 CVE-2021-46894
all versions
Use After Free (UAF) vulnerability in the uinput module.Successful exploitation of this vulnerability may lead to kernel privilege
9.8CRITICAL
 CVE-2021-46892
all versions
Encryption bypass vulnerability in Maintenance mode. Successful exploitation of this vulnerability may affect service confidential
7.5HIGH
 CVE-2023-3455
all versions
Key management vulnerability on system. Successful exploitation of this vulnerability may affect service availability and integrit
9.1CRITICAL
 CVE-2021-46893
all versions
Vulnerability of unstrict data verification and parameter check. Successful exploitation of this vulnerability may affect integrit
7.5HIGH
 CVE-2021-46891
all versions
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerabilit
9.8CRITICAL
 CVE-2021-46890
all versions
Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerabilit
9.8CRITICAL
 CVE-2023-34167
all versions
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to
5.3MEDIUM
 CVE-2023-34166
all versions
Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may c
7.5HIGH
 CVE-2023-34163
all versions
Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features
7.5HIGH
 CVE-2023-34162
all versions
Version update determination vulnerability in the user profile module.Successful exploitation of this vulnerability may cause repe
7.5HIGH
 CVE-2023-34161
all versions
nappropriate authorization vulnerability in the SettingsProvider module.Successful exploitation of this vulnerability may cause fe
7.5HIGH
 CVE-2023-34160
all versions
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to
5.3MEDIUM
 CVE-2023-34159
all versions
Improper permission control vulnerability in the Notepad app.Successful exploitation of the vulnerability may lead to privilege es
9.8CRITICAL
 CVE-2023-34158
all versions
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to
5.3MEDIUM
 CVE-2023-34156
all versions
Vulnerability of services denied by early fingerprint APIs on HarmonyOS products.Successful exploitation of this vulnerability may
5.3MEDIUM
 CVE-2023-34155
all versions
Vulnerability of unauthorized calling on HUAWEI phones and tablets.Successful exploitation of this vulnerability may affect availa
7.5HIGH
 CVE-2022-48501
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48500
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48499
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48498
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48497
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48496
all versions
Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability wil
7.5HIGH
 CVE-2022-48495
all versions
Vulnerability of unauthorized access to foreground app information.Successful exploitation of this vulnerability may cause foregro
5.3MEDIUM
 CVE-2022-48494
all versions
Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability wil
7.5HIGH
 CVE-2022-48493
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48492
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48491
all versions
Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and
5.3MEDIUM
 CVE-2022-48490
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48489
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48488
all versions
Vulnerability of bypassing the default desktop security controls.Successful exploitation of this vulnerability may cause unauthori
5.3MEDIUM
 CVE-2022-48487
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2022-48486
all versions
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
7.5HIGH
 CVE-2023-31227
all versions
The hwPartsDFR module has a vulnerability in API calling verification. Successful exploitation of this vulnerability may affect de
7.5HIGH
 CVE-2023-31226
all versions
The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability
7.5HIGH
 CVE-2023-31225
all versions
The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability may cause download failures and a
3.3LOW
 CVE-2023-0117
all versions
The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitati
5.3MEDIUM
 CVE-2023-0116
all versions
The reminder module lacks an authentication mechanism for broadcasts received. Successful exploitation of this vulnerability may a
7.5HIGH
 CVE-2022-48480
all versions
Integer overflow vulnerability in some phones. Successful exploitation of this vulnerability may affect service confidentiality.
7.5HIGH
 CVE-2021-46887
all versions
Lack of length check vulnerability in the HW_KEYMASTER module. Successful exploitation of this vulnerability may cause out-of-boun
9.8CRITICAL
 CVE-2021-46886
all versions
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2021-46885
all versions
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2021-46884
all versions
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2021-46883
all versions
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2021-46882
all versions
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2021-46881
all versions
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect a
7.5HIGH
 CVE-2023-1696
all versions
The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availa
7.5HIGH
 CVE-2023-1694
all versions
The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confi
7.5HIGH
 CVE-2023-1693
all versions
The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confi
7.5HIGH
 CVE-2023-1692
all versions
The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentialit
7.5HIGH
 CVE-2022-48314
all versions
The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of thi
6.5MEDIUM
 CVE-2022-48313
all versions
The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of thi
6.5MEDIUM
 CVE-2022-48312
all versions
The HwPCAssistant module has the out-of-bounds read/write vulnerability. Successful exploitation of this vulnerability may affect
9.1CRITICAL
 CVE-2023-26549
all versions
The SystemUI module has a vulnerability of repeated app restart due to improper parameters. Successful exploitation of this vulner
7.5HIGH
 CVE-2023-26548
all versions
The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of this vulnerability may affect av
7.5HIGH
 CVE-2023-26547
all versions
The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerabilit
7.8HIGH
 CVE-2022-48361
all versions
The Always On Display (AOD) has a path traversal vulnerability in theme files. Successful exploitation of this vulnerability may c
5.3MEDIUM
 CVE-2022-48360
all versions
The facial recognition module has a vulnerability in file permission control. Successful exploitation of this vulnerability may af
7.5HIGH
 CVE-2022-48359
all versions
The recovery mode for updates has a vulnerability that causes arbitrary disk modification. Successful exploitation of this vulnera
7.5HIGH
 CVE-2022-48358
all versions
The BatteryHealthActivity has a redirection vulnerability. Successful exploitation of this vulnerability by a malicious app can ca
7.4HIGH
 CVE-2022-48357
all versions
Some products have the double fetch vulnerability. Successful exploitation of this vulnerability may cause denial of service (DoS)
7.5HIGH
 CVE-2022-48356
all versions
The facial recognition module has a vulnerability in input parameter verification. Successful exploitation of this vulnerability m
7.5HIGH
 CVE-2022-48355
all versions
The Bluetooth module has a heap out-of-bounds read vulnerability. Successful exploitation of this vulnerability can cause the Blue
6.5MEDIUM
 CVE-2022-48354
all versions
The Bluetooth module has a heap out-of-bounds write vulnerability. Successful exploitation of this vulnerability can cause the Blu
6.5MEDIUM
 CVE-2022-48353
all versions
Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause kernel privilege escalation, w
9.8CRITICAL
 CVE-2022-48352
all versions
Some smartphones have data initialization issues. Successful exploitation of this vulnerability may cause a system panic.
7.5HIGH
 CVE-2022-48351
all versions
The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect availability.
7.5HIGH
 CVE-2022-48350
all versions
The HUAWEI Messaging app has a vulnerability of unauthorized file access. Successful exploitation of this vulnerability may affect
7.5HIGH
 CVE-2022-48349
all versions
The control component has a spoofing vulnerability. Successful exploitation of this vulnerability may affect confidentiality and a
9.1CRITICAL
 CVE-2022-48348
all versions
The MediaProvider module has a vulnerability of unauthorized data read. Successful exploitation of this vulnerability may affect c
9.1CRITICAL
 CVE-2022-48347
all versions
The MediaProvider module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect
7.5HIGH
 CVE-2022-48346
all versions
The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect confidentiality.
7.5HIGH
 CVE-2022-48291
all versions
The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerabil
6.5MEDIUM
 CVE-2022-48302
all versions
The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may af
7.5HIGH
 CVE-2022-48301
all versions
The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore
7.5HIGH
 CVE-2022-48300
all versions
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data conf
7.5HIGH
 CVE-2022-48299
all versions
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data conf
7.5HIGH
 CVE-2022-48298
all versions
The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause o
7.5HIGH
 CVE-2022-48297
all versions
The geofencing kernel code has a vulnerability of not verifying the length of the input data. Successful exploitation of this vuln
7.5HIGH
 CVE-2022-48296
all versions
The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receiv
5.3MEDIUM
 CVE-2022-48295
all versions
The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this vulnerability can lead to filling pr
7.5HIGH
 CVE-2022-48294
all versions
The IHwAttestationService interface has a defect in authentication. Successful exploitation of this vulnerability may affect data
7.5HIGH
 CVE-2022-48293
all versions
The Bluetooth module has an OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
6.5MEDIUM
 CVE-2022-48292
all versions
The Bluetooth module has an out-of-memory (OOM) vulnerability. Successful exploitation of this vulnerability may affect data confi
6.5MEDIUM
 CVE-2022-48289
all versions
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerabili
7.5HIGH
 CVE-2022-48288
all versions
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerabili
7.5HIGH
 CVE-2022-48287
all versions
The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data integrity.
7.5HIGH
 CVE-2022-48286
all versions
The multi-screen collaboration module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may
7.5HIGH
 CVE-2022-47976
all versions
The DMSDP module of the distributed hardware has a vulnerability that may cause imposter control connections.Successful exploitati
7.5HIGH
 CVE-2022-47975
all versions
The DUBAI module has a double free vulnerability. Successful exploitation of this vulnerability may affect system availability.
7.5HIGH
 CVE-2022-47974
all versions
The Bluetooth AVRCP module has a vulnerability that can lead to DoS attacks.Successful exploitation of this vulnerability may caus
6.5MEDIUM
 CVE-2022-46762
all versions
The memory management module has a logic bypass vulnerability.Successful exploitation of this vulnerability may affect data confid
7.5HIGH
 CVE-2022-46761
all versions
The system has a vulnerability that may cause dynamic hiding and restoring of app icons.Successful exploitation of this vulnerabil
7.5HIGH
 CVE-2021-46868
all versions
The HW_KEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bound
7.5HIGH
 CVE-2021-46867
all versions
The HW_KEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bound
7.5HIGH
 CVE-2022-46328
all versions
Some smartphones have the input validation vulnerability. Successful exploitation of this vulnerability may affect data confidenti
7.5HIGH
 CVE-2022-46327
all versions
Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause privilege escalation, which re
9.8CRITICAL
 CVE-2022-46326
all versions
Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system servic
9.8CRITICAL
 CVE-2022-46325
all versions
Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service
9.8CRITICAL
 CVE-2022-46324
all versions
Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system servic
9.8CRITICAL
 CVE-2022-46323
all versions
Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service
9.8CRITICAL
 CVE-2022-46322
all versions
Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system servic
7.5HIGH
 CVE-2022-46321
all versions
The Wi-Fi module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect data con
7.5HIGH
 CVE-2022-46320
all versions
The kernel module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may cause memory overwrit
9.8CRITICAL
 CVE-2022-46319
all versions
Fingerprint calibration has a vulnerability of lacking boundary judgment. Successful exploitation of this vulnerability may cause
9.8CRITICAL
 CVE-2022-46318
all versions
The HAware module has a function logic error. Successful exploitation of this vulnerability will affect the account removal functi
5.3MEDIUM
 CVE-2022-46317
all versions
The power consumption module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect sys
7.5HIGH
 CVE-2022-46312
all versions
The application management module has a vulnerability in permission verification. Successful exploitation of this vulnerability ca
7.5HIGH
 CVE-2022-41599
all versions
The system service has a vulnerability that causes incorrect return values. Successful exploitation of this vulnerability may affe
7.5HIGH
 CVE-2022-41596
all versions
The system tool has inconsistent serialization and deserialization. Successful exploitation of this vulnerability will cause unaut
7.5HIGH
 CVE-2022-41591
all versions
The backup module has a path traversal vulnerability. Successful exploitation of this vulnerability causes unauthorized access to
7.5HIGH
 CVE-2021-46856
all versions
The multi-screen collaboration module has a path traversal vulnerability. Successful exploitation of this vulnerability may affect
7.5HIGH
 CVE-2022-44563
all versions
There is a race condition vulnerability in SD upgrade mode. Successful exploitation of this vulnerability may affect data confiden
5.9MEDIUM
 CVE-2022-44562
all versions
The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerab
9.8CRITICAL
 CVE-2022-44561
all versions
The preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauth
7.5HIGH
 CVE-2022-44560
all versions
The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher modu
5.3MEDIUM
 CVE-2022-44559
all versions
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may ca
9.8CRITICAL
 CVE-2022-44558
all versions
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may ca
9.8CRITICAL
 CVE-2022-44557
all versions
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Succes
7.5HIGH
 CVE-2022-44555
all versions
The DDMP/ODMF module has a service hijacking vulnerability. Successful exploit of this vulnerability may cause services to be unav
7.5HIGH
 CVE-2022-44554
all versions
The power module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause abnormal
7.5HIGH
 CVE-2022-44553
all versions
The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system
5.3MEDIUM
 CVE-2022-44552
all versions
The lock screen module has defects introduced in the design process. Successful exploitation of this vulnerability may affect syst
7.5HIGH
 CVE-2022-44551
all versions
The iaware module has a vulnerability in thread security. Successful exploitation of this vulnerability will affect confidentialit
9.8CRITICAL
 CVE-2022-44550
all versions
The graphics display module has a UAF vulnerability when traversing graphic layers. Successful exploitation of this vulnerability
7.5HIGH
 CVE-2022-44549
all versions
The LBS module has a vulnerability in geofencing API access. Successful exploitation of this vulnerability may cause third-party a
7.5HIGH
 CVE-2022-44548
all versions
There is a vulnerability in permission verification during the Bluetooth pairing process. Successful exploitation of this vulnerab
4.3MEDIUM
 CVE-2022-44547
all versions
The Display Service module has a UAF vulnerability. Successful exploitation of this vulnerability may affect the display service a
7.5HIGH
 CVE-2022-44546
all versions
The kernel module has the vulnerability that the mapping is not cleared after the memory is automatically released. Successful exp
7.5HIGH
 CVE-2021-46852
all versions
The memory management module has the logic bypass vulnerability. Successful exploitation of this vulnerability may affect data con
7.5HIGH
 CVE-2021-46851
all versions
The DRM module has a vulnerability in verifying the secure memory attributes. Successful exploitation of this vulnerability may ca
9.8CRITICAL
 CVE-2022-44556
all versions
Missing parameter type validation in the DRM module. Successful exploitation of this vulnerability may affect availability.
7.5HIGH
 CVE-2022-41603
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41602
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41601
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41600
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41598
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41597
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41595
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41594
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41593
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41592
all versions
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA
3.4LOW
 CVE-2022-41589
all versions
The DFX unwind stack module of the ArkCompiler has a vulnerability in interface calling.Successful exploitation of this vulnerabil
7.5HIGH
 CVE-2022-41588
all versions
The home screen module has a vulnerability in service logic processing.Successful exploitation of this vulnerability may affect da
7.5HIGH
 CVE-2022-41587
all versions
Uncaptured exceptions in the home screen module. Successful exploitation of this vulnerability may affect stability.
5.3MEDIUM
 CVE-2022-41586
all versions
The communication framework module has a vulnerability of not truncating data properly.Successful exploitation of this vulnerabili
7.5HIGH
 CVE-2022-41585
all versions
The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriti
7.8HIGH
 CVE-2022-41584
all versions
The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriti
7.8HIGH
 CVE-2022-41583
all versions
The storage maintenance and debugging module has an array out-of-bounds read vulnerability.Successful exploitation of this vulnera
7.5HIGH
 CVE-2022-41582
all versions
The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability.
7.5HIGH
 CVE-2022-41581
all versions
The HW_KEYMASTER module has a vulnerability of not verifying the data read.Successful exploitation of this vulnerability may cause
9.1CRITICAL
 CVE-2022-41580
all versions
The HW_KEYMASTER module has a vulnerability of not verifying the data read.Successful exploitation of this vulnerability may cause
9.8CRITICAL
 CVE-2022-41578
all versions
The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege e
9.8CRITICAL
 CVE-2022-41577
all versions
The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitatio
7.1HIGH
 CVE-2022-41576
all versions
The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversib
7.8HIGH
 CVE-2022-39011
all versions
The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of
7.5HIGH
 CVE-2022-38998
all versions
The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vuln
7.5HIGH
 CVE-2022-38986
all versions
The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of
9.1CRITICAL
 CVE-2022-38985
all versions
The facial recognition module has a vulnerability in input validation.Successful exploitation of this vulnerability may affect dat
7.5HIGH
 CVE-2022-38984
all versions
The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vuln
7.5HIGH
 CVE-2022-38983
all versions
The BT Hfp Client module has a Use-After-Free (UAF) vulnerability.Successful exploitation of this vulnerability may result in arbi
9.8CRITICAL
 CVE-2021-46840
all versions
The HW_KEYMASTER module has an out-of-bounds access vulnerability in parameter set verification.Successful exploitation of this vu
9.1CRITICAL
 CVE-2021-46839
all versions
The HW_KEYMASTER module has a vulnerability of missing bounds check on length.Successful exploitation of this vulnerability may ca
9.1CRITICAL
 CVE-2022-39010
all versions
The HwChrService module has a vulnerability in permission control. Successful exploitation of this vulnerability may cause disclos
7.5HIGH
 CVE-2022-39009
all versions
The WLAN module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause third-part
9.8CRITICAL
 CVE-2022-39008
all versions
The NFC module has bundle serialization/deserialization vulnerabilities. Successful exploitation of this vulnerability may cause t
9.1CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin