CVE-2023-33078 – Buffer Over-read in DSP Services
https://notcve.org/view.php?id=CVE-2023-33078
Information Disclosure while processing IOCTL request in FastRPC. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-126: Buffer Over-read •
CVE-2024-21826 – Huks has an insecure storage of sensitive information vulnerability
https://notcve.org/view.php?id=CVE-2024-21826
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak through insecure storage. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-03.md • CWE-922: Insecure Storage of Sensitive Information •
CVE-2024-21816 – Background task manager has an improper preservation of permissions vulnerability
https://notcve.org/view.php?id=CVE-2024-21816
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through improper preservation of permissions. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-03.md • CWE-281: Improper Preservation of Permissions •
CVE-2023-25176 – Pasteboard has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2023-25176
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause information leak through out-of-bounds Read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-03.md • CWE-125: Out-of-bounds Read •
CVE-2024-20038
https://notcve.org/view.php?id=CVE-2024-20038
This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/March-2024 •