Openharmony

openharmony

Vendor: Openatom • 156 CVEs

CVEs (156)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-3759 1Openatom 1Openharmony Jan 2, 2025 May 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through use after free.
CVE-2024-3758 1Openatom 1Openharmony Jan 2, 2025 May 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through heap buffer overflow.
CVE-2024-3757 1Openatom 1Openharmony Jan 2, 2025 May 7, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through integer overflow.
CVE-2024-31078 1Openatom 1Openharmony Jan 2, 2025 May 7, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL pointer dereference.
CVE-2024-27217 1Openatom 1Openharmony Jan 2, 2025 May 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.
CVE-2024-23808 1Openatom 1Openharmony Jan 2, 2025 May 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free or cause DOS through NULL pointer dereference.
CVE-2024-29086 1Openatom 1Openharmony Jan 2, 2025 Apr 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker cause DOS through stack overflow.
CVE-2024-29074 1Openatom 1Openharmony Jan 2, 2025 Apr 2, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through improper input.
CVE-2024-28951 1Openatom 1Openharmony Jan 24, 2025 Apr 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free.
CVE-2024-28226 1Openatom 1Openharmony Jan 27, 2025 Apr 2, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a remote attacker cause DOS through improper input.
CVE-2024-24581 1Openatom 1Openharmony Jan 27, 2025 Apr 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution through out-of-bounds write.
CVE-2024-22180 1Openatom 1Openharmony Jan 27, 2025 Apr 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through use after free.
CVE-2024-22177 1Openatom 1Openharmony Jan 2, 2025 Apr 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through get permission.
CVE-2024-22098 1Openatom 1Openharmony Jan 2, 2025 Apr 2, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through use after free.
CVE-2024-22092 1Openatom 1Openharmony Jan 27, 2025 Apr 2, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a remote attacker bypass permission verification to install apps, although these require user action.
CVE-2024-21834 1Openatom 1Openharmony Jan 2, 2025 Apr 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type confusion.
CVE-2024-21826 1Openatom 1Openharmony Dec 16, 2024 Mar 4, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak through insecure storage.
CVE-2024-21816 1Openatom 1Openharmony Dec 16, 2024 Mar 4, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through improper preservation of permissions.
CVE-2023-49602 1Openatom 1Openharmony Dec 16, 2024 Mar 4, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type confusion.
CVE-2023-46708 1Openatom 1Openharmony Dec 16, 2024 Mar 4, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through use after free.

Previous 1...4 567 8 Next