CVSS: 8.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-38386 – Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
https://notcve.org/view.php?id=CVE-2024-38386
02 Sep 2024 — in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. en OpenHarmony v4.1.0 y versiones anteriores se permite a un atacante local la ejecución de código arbitrario en aplicaciones preinstaladas a través de escritura fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-09.md • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-38382 – Ability Runtime has an out-of-bounds read permission bypass vulnerability
https://notcve.org/view.php?id=CVE-2024-38382
02 Sep 2024 — in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read. en OpenHarmony v4.0.0 y versiones anteriores, se permite que un atacante local provoque fugas de información a través de lecturas fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-09.md • CWE-125: Out-of-bounds Read CWE-922: Insecure Storage of Sensitive Information •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-28044 – Liteos-A has an integer overflow vulnerability
https://notcve.org/view.php?id=CVE-2024-28044
02 Sep 2024 — in OpenHarmony v4.1.0 and prior versions allow a local attacker cause crash through integer overflow. en OpenHarmony v4.1.0 y versiones anteriores, se permite que un atacante local provoque un bloqueo a través de un desbordamiento de enteros. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-09.md • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-37077 – Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
https://notcve.org/view.php?id=CVE-2024-37077
02 Jul 2024 — in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write. En OpenHarmony v4.0.0 y versiones anteriores permiten a un atacante remoto la ejecución de código arbitrario en aplicaciones preinstaladas mediante escritura fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-37185 – Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
https://notcve.org/view.php?id=CVE-2024-37185
02 Jul 2024 — in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write. En OpenHarmony v4.0.0 y versiones anteriores permiten a un atacante remoto la ejecución de código arbitrario en aplicaciones preinstaladas mediante escritura fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2024-36260 – Arkcompiler Ets Runtime has an out-of-bounds write vulnerability
https://notcve.org/view.php?id=CVE-2024-36260
02 Jul 2024 — in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write. En OpenHarmony v4.0.0 y versiones anteriores permiten a un atacante remoto la ejecución de código arbitrario en aplicaciones preinstaladas mediante escritura fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-787: Out-of-bounds Write •
CVSS: 3.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-36278 – Arkcompiler Ets Runtime has a type confusion vulnerability
https://notcve.org/view.php?id=CVE-2024-36278
02 Jul 2024 — in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion. En OpenHarmony v4.0.0 y versiones anteriores permiten que un atacante local provoque que las aplicaciones fallen debido a confusión de tipos. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-36243 – Arkcompiler Ets Runtime has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2024-36243
02 Jul 2024 — in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write. En OpenHarmony v4.0.0 y versiones anteriores permiten a un atacante remoto la ejecución de código arbitrario en aplicaciones preinstaladas mediante lectura y escritura fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-37030 – Arkcompiler Ets Runtime has a use after free vulnerability
https://notcve.org/view.php?id=CVE-2024-37030
02 Jul 2024 — in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through use after free. En OpenHarmony v4.0.0 y versiones anteriores permiten a un atacante remoto la ejecución de código arbitrario en aplicaciones preinstaladas mediante el use after free. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-416: Use After Free •
CVSS: 3.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-31071 – Arkcompiler Ets Runtime has a type confusion vulnerability
https://notcve.org/view.php?id=CVE-2024-31071
02 Jul 2024 — in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion. En OpenHarmony v4.0.0 y versiones anteriores permiten que un atacante local provoque que las aplicaciones fallen debido a confusión de tipos. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •