CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0303 – Liteos_a has a buffer overflow vulnerability
https://notcve.org/view.php?id=CVE-2025-0303
07 Feb 2025 — in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through buffer overflow. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-02.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0302 – Liteos_a has an integer overflow read vulnerability
https://notcve.org/view.php?id=CVE-2025-0302
07 Feb 2025 — in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-02.md • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54030 – Communication_dsoftbus has an UAF vulnerability
https://notcve.org/view.php?id=CVE-2024-54030
07 Jan 2025 — in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through use after free. en OpenHarmony v4.1.2 y versiones anteriores se permite que un atacante local cause DOS a través del use-after-free. in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through use after free. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-01.md • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47398 – Liteos_a has an out-of-bounds write vulnerability
https://notcve.org/view.php?id=CVE-2024-47398
07 Jan 2025 — in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the device is unable to boot up through out-of-bounds write. en OpenHarmony v4.1.2 y versiones anteriores, permitir que un atacante local provoque que el dispositivo no pueda iniciarse mediante escritura fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-01.md • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45070 – Liteos_a has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2024-45070
07 Jan 2025 — in OpenHarmony v4.1.2 and prior versions allow a local attacker cause information leak through out-of-bounds Read. en OpenHarmony v4.1.2 y versiones anteriores, se permite que un atacante local provoque fugas de información a través de lecturas fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-01.md • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-9978 – Liteos_a has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2024-9978
03 Dec 2024 — in OpenHarmony v4.1.1 and prior versions allow a local attacker cause information leak through out-of-bounds Read. en OpenHarmony v4.1.1 y versiones anteriores, se permite que un atacante local provoque fugas de información a través de lecturas fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-12.md • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-12082 – Ability Runtime has an out-of-bounds read permission bypass vulnerability
https://notcve.org/view.php?id=CVE-2024-12082
03 Dec 2024 — in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read. en OpenHarmony v4.0.0 y versiones anteriores se permite que un atacante local provoque fugas de información a través de lecturas fuera de los límites. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-12.md • CWE-125: Out-of-bounds Read CWE-922: Insecure Storage of Sensitive Information •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-10074 – Liteos_a has an use after free vulnerability
https://notcve.org/view.php?id=CVE-2024-10074
03 Dec 2024 — in OpenHarmony v4.1.1 and prior versions allow a local attacker cause the common permission is upgraded to root through use after free. en OpenHarmony v4.1.1 y versiones anteriores se permite que un atacante local haga que el permiso común se actualice a root mediante el uso use after free. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-12.md • CWE-416: Use After Free •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47402 – Liteos_a has an Out-of-bounds Read vulnerability
https://notcve.org/view.php?id=CVE-2024-47402
05 Nov 2024 — in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through out-of-bounds read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-11.md • CWE-125: Out-of-bounds Read •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47137 – Liteos_a has an out-of-bounds Write vulnerability
https://notcve.org/view.php?id=CVE-2024-47137
05 Nov 2024 — in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through out-of-bounds write. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-11.md • CWE-787: Out-of-bounds Write •