Huawei Security Vulnerabilities (CVEs)
Track 614 security vulnerabilities affecting Huawei products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability in Huawei Device Manager allows attackers to compromise data integrity during multi-device interactions. It affects Huawei devices ...
Jun 13, 2022This CVE describes a format string vulnerability in the voice wakeup module of Huawei/HarmonyOS devices. Attackers can exploit this by providing malic...
Jun 13, 2022This vulnerability in Huawei/HarmonyOS setting modules involves improper API usage that could allow unauthorized access to sensitive data. It affects ...
Jun 13, 2022This vulnerability allows unauthorized access to USSD dialog boxes on locked Huawei/HarmonyOS devices. Attackers could potentially view or modify sens...
Jun 13, 2022This vulnerability in Huawei's AMS module allows improper input validation that could lead to privilege escalation. Attackers could exploit this to ga...
Jun 13, 2022CVE-2021-46814 is an out-of-bounds memory read/write vulnerability in Huawei's video framework that could allow attackers to crash systems or potentia...
Jun 13, 2022CVE-2022-22252 is a use-after-free vulnerability in Huawei's DFX module that could allow attackers to crash affected systems or potentially execute ar...
May 13, 2022This vulnerability in Huawei's HiAIserver allows attackers to compromise AI services by exploiting improper validation of model weights. It affects Hu...
May 13, 2022This vulnerability in Huawei's HiAIserver allows attackers to bypass model property validation, potentially compromising AI services. It affects Huawe...
May 13, 2022This vulnerability in Huawei's HiAIserver allows attackers to bypass model weight validation, potentially compromising AI services. It affects Huawei ...
May 13, 2022CVE-2022-29793 is a configuration defect in the activation lock feature of Huawei mobile phones that could allow attackers to bypass security controls...
May 13, 2022CVE-2022-29794 is a Use After Free vulnerability in the frame scheduling module of Huawei HarmonyOS and EMUI devices. This vulnerability allows attack...
May 13, 2022This vulnerability in Huawei audio modules allows attackers to trigger out-of-bounds memory access by passing malicious parameters. It affects Huawei ...
May 13, 2022This vulnerability in Huawei's iConnect module allows third-party pop-up windows to be covered, potentially misleading users into performing unintende...
May 13, 2022This CVE-2022-22260 is a use-after-free vulnerability in a kernel module that could allow attackers to corrupt memory. Successful exploitation could l...
May 13, 2022CVE-2022-22253 is an integrity check validation vulnerability in Huawei's DFX module that could allow attackers to compromise system stability. This a...
Apr 11, 2022CVE-2022-22255 is a denial-of-service vulnerability in Huawei/HarmonyOS application framework that allows attackers to crash affected systems, disrupt...
Apr 11, 2022CVE-2022-22257 is an improper permission control vulnerability in Huawei's customization framework that allows unauthorized access to modify system se...
Apr 11, 2022This vulnerability in Huawei Wi-Fi modules allows third-party applications to intercept event notifications and inject information, potentially leadin...
Apr 11, 2022CVE-2021-46740 is an authentication bypass vulnerability in Huawei/HarmonyOS device authentication service modules. It allows attackers to bypass auth...
Apr 11, 2022This vulnerability in Huawei/HarmonyOS multi-window module allows unauthorized modification of secure system settings. Attackers could tamper with Set...
Apr 11, 2022CVE-2021-33658 is a privilege escalation vulnerability in atune where local users can use curl to access the atune URL interface without authenticatio...
Mar 11, 2022This CVE describes a buffer overflow vulnerability in Huawei video framework components where input buffer copying occurs without proper size validati...
Mar 10, 2022CVE-2021-40064 is a heap-based buffer overflow vulnerability in Huawei HarmonyOS and EMUI system components. This vulnerability allows attackers to po...
Mar 10, 2022This CVE-2021-40049 is a permission control vulnerability in Huawei's PMS (Package Manager Service) module that allows unauthorized access to sensitiv...
Mar 10, 2022CVE-2021-40047 is a memory leak vulnerability in Huawei's Bastet module where memory isn't properly released after its effective lifetime. This vulner...
Mar 10, 2022This CVE describes a laser command injection vulnerability in Huawei AIS-BW80H-00 devices that allows attackers to execute voice commands on the devic...
Feb 25, 2022CVE-2021-40046 is a privilege escalation vulnerability in Huawei PCManager version 11.1.1.95 that allows attackers to access resources beyond their au...
Feb 25, 2022CVE-2021-22480 is an integer overflow vulnerability in a HarmonyOS module interface that can lead to heap memory overflow when exploited. This vulnera...
Feb 25, 2022This vulnerability in Huawei smartphones allows attackers to bypass permission isolation mechanisms, potentially leading to out-of-bounds memory acces...
Feb 25, 2022CVE-2021-22434 is a critical memory address out-of-bounds vulnerability affecting certain Huawei smartphones running HarmonyOS. Successful exploitatio...
Feb 25, 2022This CVE describes an improper verification vulnerability in Huawei smartphones that allows unauthorized read and write access to certain files. Attac...
Feb 25, 2022CVE-2021-22426 is a critical memory corruption vulnerability in Huawei smartphones that allows attackers to execute arbitrary code by exploiting out-o...
Feb 25, 2022CVE-2021-22430 is a logic bypass vulnerability in Huawei smartphones that could allow attackers to inject and execute arbitrary code. This affects Hua...
Feb 25, 2022CVE-2021-22319 is an integer overflow vulnerability in Huawei smartphones that occurs due to improper input validation. Successful exploitation could ...
Feb 25, 2022This CVE describes a buffer overflow vulnerability in Huawei smartphones that affects Multi-Screen Collaboration functionality. Successful exploitatio...
Feb 25, 2022CVE-2021-39992 is an improper security permission configuration vulnerability in Huawei ACPU that allows attackers to bypass intended security restric...
Feb 9, 2022This vulnerability allows attackers to access arbitrary memory addresses through test code in Huawei product lines, potentially leading to information...
Feb 9, 2022This is a Bluetooth permission verification vulnerability in Huawei devices that allows attackers to bypass authentication and perform unauthorized op...
Feb 9, 2022This vulnerability allows attackers to bypass security protections in Huawei modem firmware, potentially leading to memory protection failures. It aff...
Feb 9, 2022This vulnerability in Huawei's bone voice ID TA (Trusted Application) allows unauthorized access to sensitive information due to improper information ...
Jan 10, 2022CVE-2021-40038 is a double free vulnerability in the AOD (Always On Display) module of Huawei smartphones running HarmonyOS. This memory corruption fl...
Jan 10, 2022CVE-2021-40006 is a security algorithm design defect vulnerability affecting Huawei HarmonyOS and EMUI devices. Successful exploitation could allow at...
Jan 10, 2022CVE-2021-40014 is a heap overflow vulnerability in the bone voice ID trusted application (TA) on Huawei devices running HarmonyOS. This vulnerability ...
Jan 10, 2022This CVE describes an out-of-bounds write vulnerability in Bluetooth modules that could allow remote attackers to execute arbitrary commands on affect...
Jan 10, 2022This CVE describes a permission management vulnerability in cellular modules that could allow unauthorized access to sensitive data. It affects device...
Jan 10, 2022CVE-2021-40010 is a critical heap overflow vulnerability in Huawei's bone voice ID Trusted Application (TA) component. Successful exploitation could a...
Jan 10, 2022CVE-2021-40018 is a null pointer dereference vulnerability in the eID module of HarmonyOS, potentially allowing attackers to cause denial-of-service o...
Jan 10, 2022CVE-2021-40021 is an out-of-bounds memory write vulnerability in the eID module of HarmonyOS. This vulnerability could allow attackers to write beyond...
Jan 10, 2022CVE-2021-40025 is an uninitialized memory use vulnerability in the eID module of HarmonyOS. This allows attackers to potentially access sensitive info...
Jan 10, 2022Why Monitor Huawei Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 614+ known vulnerabilities affecting Huawei products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Huawei packages in under 60 seconds. No agents required - completely agentless scanning that works across Huawei deployments.
Free vulnerability database: Access detailed information about every Huawei CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Huawei CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
