Openharmony

openharmony

Vendor: Openatom • 156 CVEs

CVEs (156)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-0639 1Openatom 1Openharmony Mar 17, 2026 Mar 16, 2026 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v6.0 and prior versions allow a local attacker case DOS through missing release of memory.
CVE-2025-6969 1Openatom 1Openharmony Mar 17, 2026 Mar 16, 2026 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.1.0 and prior versions allow a local attacker cause DOS through improper input.
CVE-2025-52458 1Openatom 1Openharmony Mar 17, 2026 Mar 16, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVE-2025-41432 1Openatom 1Openharmony Mar 17, 2026 Mar 16, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVE-2025-26474 1Openatom 1Openharmony Mar 17, 2026 Mar 16, 2026 N/A· v4 3.3 LOW· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information improper input. This vulnerability can be exploited only in restricted scenarios.
CVE-2025-25277 1Openatom 1Openharmony Mar 17, 2026 Mar 16, 2026 N/A· v4 7.0 HIGH· v3 N/A· v2 in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios.
CVE-2025-12736 1Openatom 1Openharmony Mar 17, 2026 Mar 16, 2026 N/A· v4 6.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker case sensitive information leak through use of uninitialized resource.
CVE-2025-27577 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through race condition.
CVE-2025-27562 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.
CVE-2025-27536 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through type confusion.
CVE-2025-27128 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free.
CVE-2025-26690 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.
CVE-2025-25278 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through race condition.
CVE-2025-25212 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through improper input.
CVE-2025-24925 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.
CVE-2025-24844 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.
CVE-2025-24298 1Openatom 1Openharmony Aug 12, 2025 Aug 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free.
CVE-2025-27563 1Openatom 1Openharmony Jun 9, 2025 Jun 8, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.
CVE-2025-27247 1Openatom 1Openharmony Jun 9, 2025 Jun 8, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.
CVE-2025-27242 1Openatom 1Openharmony Jun 9, 2025 Jun 8, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through improper input.

12 3 4 5...8 Next