Shodan
Vulnerabilities
Vulnerable Software
Huawei:  >> Harmonyos  >> 3.0.0  Security Vulnerabilities
CVE-2022-41591
The backup module has a path traversal vulnerability. Successful exploitation of this vulnerability causes unauthorized access to other system files.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-12-20
CVE-2022-44548
There is a vulnerability in permission verification during the Bluetooth pairing process. Successful exploitation of this vulnerability may cause the dialog box for confirming the pairing not to be displayed during Bluetooth pairing.
CVSS Score
4.3
EPSS Score
0.0
Published
2022-11-09
CVE-2022-44553
The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider. Successful exploitation of this vulnerability may cause third-party apps to start periodically.
CVSS Score
5.3
EPSS Score
0.001
Published
2022-11-09
CVE-2022-44555
The DDMP/ODMF module has a service hijacking vulnerability. Successful exploit of this vulnerability may cause services to be unavailable.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-11-09
CVE-2022-44557
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-11-09
CVE-2022-44559
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
CVSS Score
9.8
EPSS Score
0.008
Published
2022-11-09
CVE-2022-44560
The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.
CVSS Score
5.3
EPSS Score
0.001
Published
2022-11-09
CVE-2022-44561
The preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauthorized apps add arbitrary widgets and shortcuts without interaction.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-11-09
CVE-2022-44562
The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
CVSS Score
9.8
EPSS Score
0.008
Published
2022-11-09
CVE-2022-44556
Missing parameter type validation in the DRM module. Successful exploitation of this vulnerability may affect availability.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-11-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved