| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
|
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia audio crash through modify a released pointer. |
|
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause apps crash through type confusion. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause apps crash through type confusion. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through out-of-bounds read. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through race condition. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOSÂ through improper input. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through improper input. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission. |
|
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia camera crash through modify a released pointer. |
| OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have an Out-of-bound memory read and write vulnerability in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could read out-of-bound memory leading sensitive to information disclosure. The processes with system user UID run on the device would be able to write out-of-bound memory which could lead to unspecified memory corruption. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory. |
| in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through buffer overflow. |
