CVE-2023-1696
https://notcve.org/view.php?id=CVE-2023-1696
The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/4 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202304-0000001506528486 •
CVE-2023-1692
https://notcve.org/view.php?id=CVE-2023-1692
The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/4 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202304-0000001506528486 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVE-2022-48314
https://notcve.org/view.php?id=CVE-2022-48314
The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/4 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202304-0000001506528486 •
CVE-2022-48313
https://notcve.org/view.php?id=CVE-2022-48313
The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/4 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202304-0000001506528486 •
CVE-2023-26547
https://notcve.org/view.php?id=CVE-2023-26547
The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation. • https://consumer.huawei.com/en/support/bulletin/2023/3 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202303-0000001529824505 • CWE-502: Deserialization of Untrusted Data •