CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-22841 – Arkcompiler Ets Runtime has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2025-22841
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-22837 – Arkcompiler Ets Runtime has a NULL pointer dereference vulnerability
https://notcve.org/view.php?id=CVE-2025-22837
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through NULL pointer dereference. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-476: NULL Pointer Dereference •
CVSS: 3.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-22835 – Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
https://notcve.org/view.php?id=CVE-2025-22835
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-787: Out-of-bounds Write •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-22443 – Arkcompiler Ets Runtime has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2025-22443
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-21098 – Liteos-A has an insecure storage of sensitive information vulnerability
https://notcve.org/view.php?id=CVE-2025-21098
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read bypass permission check. in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through out-of-bounds read bypass permission check. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-21097 – Arkcompiler Ets Runtime has a NULL pointer dereference vulnerability
https://notcve.org/view.php?id=CVE-2025-21097
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through NULL pointer dereference. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-476: NULL Pointer Dereference •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-21089 – Arkcompiler Ets Runtime has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2025-21089
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-21084 – Arkcompiler Ets Runtime has an NULL pointer dereference vulnerability
https://notcve.org/view.php?id=CVE-2025-21084
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through through NULL pointer dereference.. This vulnerability can be exploited only in restricted scenarios. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-476: NULL Pointer Dereference •
CVSS: 3.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20626 – Arkcompiler Ets Runtime has an UAF vulnerability
https://notcve.org/view.php?id=CVE-2025-20626
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-416: Use After Free •
CVSS: 3.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20091 – Communication Dsoftbus has an UAF vulnerability
https://notcve.org/view.php?id=CVE-2025-20091
04 Mar 2025 — in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-03.md • CWE-416: Use After Free •