Filter
AND
Openharmony OpenharmonyNull Pointer Dereference, Input Validation
5.5
First published (updated )
Openharmony OpenharmonyThe ArkUI framework subsystem doesn't check the input parameter,causing type confusion and invalid memory access.
5.5
First published (updated )
Openharmony Openharmonyplatform_callback_stub in misc subsystem has an authentication bypass vulnerability which allows an "SA relay attack".
7.8
First published (updated )
Openharmony Openharmonysoftbus_client_stub in communication subsystem has an authentication bypass vulnerability which allows an "SA relay attack".
7.8
First published (updated )
Openharmony OpenharmonyKernel subsystem in kernel_liteos_a has a kernel stack overflow vulnerability when call SysTimerGettime.
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openharmony OpenharmonyKernel subsystem in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGettime.
7.8
First published (updated )
Openharmony OpenharmonyThe appspawn and nwebspawn services were found to be vulnerable to buffer overflow vulnerability due to insufficient input validation.
7.8
First published (updated )
Openharmony OpenharmonyKernel subsystem in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGetres.
First published (updated )
Openharmony OpenharmonyKernel memory pool override in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel pointer, which could be used in furth ...
7.8
First published (updated )
Openharmony OpenharmonyOut-of-bound memory read and write in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could read out-of-bound memory leading sensitive to information disclosure. The proc ...
5.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openharmony OpenharmonyIPC in communication subsystem has a heap overflow vulnerability. Local attackers can trigger a heap overflow and get network sensitive information.
6.2
First published (updated )
Openharmony OpenharmonyIncorrect configuration of the cJSON library lead a Stack overflow vulnerability during recursive parsing. LAN attackers can lead a DoS attack to all network devices.
7.4
First published (updated )