📦 Openharmony
by Openatom
🔍 What is Openharmony?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows a local attacker to execute arbitrary code with Trusted Computing Base (TCB) privileges through a race condition in OpenHarmony. Attackers can escalate privileges and potenti...
CVE-2025-27128 is a use-after-free vulnerability in OpenHarmony's tcb (Trusted Computing Base) component that allows local attackers to execute arbitrary code with elevated privileges. This affects Op...
This vulnerability allows a local attacker to execute arbitrary code with elevated privileges (in the Trusted Computing Base) through a race condition in OpenHarmony. It affects OpenHarmony v5.0.3 and...
A buffer overflow vulnerability in OpenHarmony v4.1.2 and earlier allows local attackers to escalate common permissions to root privileges and leak sensitive information. This affects all systems runn...
This CVE describes a use-after-free vulnerability in OpenHarmony that allows a local attacker to escalate common permissions to root privileges and leak sensitive information. It affects OpenHarmony v...
This vulnerability in OpenHarmony allows a local attacker to perform an out-of-bounds write that can cause the device to become unbootable. It affects OpenHarmony v4.1.2 and earlier versions. Attacker...
This CVE describes a use-after-free vulnerability in OpenHarmony that allows a local attacker to escalate privileges from common user permissions to root access. The vulnerability affects OpenHarmony ...
This vulnerability allows a local attacker to execute arbitrary code in pre-installed apps on OpenHarmony devices through an out-of-bounds write. It affects OpenHarmony v4.1.0 and earlier versions, po...
This CVE describes a use-after-free vulnerability in OpenHarmony that allows a local attacker to escalate common permissions to root and leak sensitive information. It affects OpenHarmony v4.1.0 and e...
This vulnerability allows a local attacker to execute arbitrary code in pre-installed applications on OpenHarmony devices through an out-of-bounds write. It affects OpenHarmony v4.1.0 and earlier vers...
This vulnerability allows remote attackers to execute arbitrary code in pre-installed applications on OpenHarmony devices through an out-of-bounds write. It affects OpenHarmony v4.0.0 and earlier vers...
This vulnerability in OpenHarmony allows remote attackers to execute arbitrary code in pre-installed applications through out-of-bounds memory operations. It affects OpenHarmony v4.0.0 and earlier ver...
CVE-2024-37030 is a use-after-free vulnerability in OpenHarmony v4.0.0 and earlier that allows remote attackers to execute arbitrary code in pre-installed applications. This affects devices running vu...
CVE-2024-28226 is an improper input validation vulnerability in OpenHarmony that allows remote attackers to cause denial of service (DoS) by sending specially crafted input. This affects OpenHarmony v...
This vulnerability in OpenHarmony allows remote attackers to bypass permission verification and install applications without proper authorization, though user interaction is required. It affects OpenH...
CVE-2024-21860 is a use-after-free vulnerability in OpenHarmony v4.0.0 and earlier that allows an adjacent attacker to execute arbitrary code in any applications. This affects devices running vulnerab...
CVE-2023-43612 is a local privilege escalation vulnerability in OpenHarmony that allows attackers to read and write arbitrary files due to improper permission preservation. This affects OpenHarmony v3...
This vulnerability in OpenHarmony allows a local attacker to access confidential information or modify sensitive files due to incorrect default permissions. It affects OpenHarmony v3.2.2 and prior ver...
A use-after-free vulnerability in OpenHarmony's kernel subsystem allows local attackers to escalate privileges to root. This affects OpenHarmony versions 3.1.5 and earlier. Attackers must already have...
This vulnerability in OpenHarmony allows a local attacker to bypass permission checks and access sensitive information they shouldn't have access to. It affects OpenHarmony v5.0.3 and earlier versions...
This CVE describes an improper input validation vulnerability in OpenHarmony that allows a local attacker to cause a denial of service (DoS) condition. The vulnerability affects OpenHarmony v5.0.3 and...
This vulnerability in OpenHarmony allows a local attacker to bypass permission checks and access sensitive information they shouldn't have access to. It affects OpenHarmony v5.0.3 and earlier versions...
This CVE describes a race condition vulnerability in OpenHarmony that allows local attackers to cause information leaks. The vulnerability affects OpenHarmony v5.0.3 and earlier versions, potentially ...
This vulnerability allows a local attacker to execute arbitrary code in pre-installed apps on OpenHarmony devices through an integer overflow. It affects OpenHarmony v5.0.2 and earlier versions. Attac...
This vulnerability in OpenHarmony allows a local attacker to bypass permission checks and perform out-of-bounds reads, potentially leaking sensitive information from kernel memory. It affects OpenHarm...
This vulnerability in OpenHarmony allows a local attacker to read memory beyond intended boundaries, potentially exposing sensitive information. It affects OpenHarmony v5.0.2 and earlier versions, req...
An integer overflow vulnerability in OpenHarmony v4.1.2 and earlier allows local attackers to cause denial of service (DoS) by triggering system crashes or instability. This affects systems running vu...
This CVE describes a use-after-free vulnerability in OpenHarmony v4.1.2 and earlier versions that allows a local attacker to cause a denial of service (DoS). The vulnerability affects systems running ...
CVE-2024-9978 is an out-of-bounds read vulnerability in OpenHarmony that allows a local attacker to read memory beyond allocated buffers, potentially leaking sensitive information. This affects OpenHa...
This vulnerability in OpenHarmony allows a local attacker to read memory beyond intended boundaries, potentially exposing sensitive information. It affects OpenHarmony v4.0.0 and earlier versions, imp...
This CVE describes a use-after-free vulnerability in OpenHarmony v4.1.0 that allows a local attacker with high privileges to execute arbitrary code in pre-installed applications. The vulnerability aff...
CVE-2024-39775 is an out-of-bounds read vulnerability in OpenHarmony that allows remote attackers to cause information leaks. This affects OpenHarmony v4.1.0 and earlier versions, potentially exposing...
This vulnerability in OpenHarmony allows a local attacker to read memory beyond intended boundaries, potentially exposing sensitive information. It affects OpenHarmony v4.0.0 and earlier versions, imp...
This vulnerability allows a local attacker to execute arbitrary code with Trusted Computing Base (TCB) privileges through a heap buffer overflow in OpenHarmony. It affects OpenHarmony v4.0.0 and earli...
CVE-2024-27217 is a use-after-free vulnerability in OpenHarmony v4.0.0 and earlier that allows local attackers to execute arbitrary code within pre-installed applications. This affects devices running...