Huawei Vulnerabilities
Comprehensive security vulnerability database for Huawei products
28
0
7
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2022-37005 | 7.5 | This vulnerability allows an attacker to inject harmful commands into the Settings application, potentially exposing sensitive user data. To exploit this flaw, the attacker would need access to the device or the ability to trick the user into interacting with a malicious app. | huaweiemui | Theoretical | over 3 years agoAug 10, 2022 |
| CVE-2022-37004 | 7.5 | This vulnerability allows an attacker to bypass the initial setup process of the Huawei EMUI settings, potentially leading to unauthorized access to the device's features. To exploit this, the attacker would need physical access to the device during the setup phase. | huaweiemui | Exploit Available | over 3 years agoAug 10, 2022 |
| CVE-2021-40040 | 7.5 | This vulnerability allows an attacker to write data to any location in the memory of Huawei's EMUI system, potentially exposing sensitive information. To exploit this flaw, the attacker needs access to the device, making it a serious risk for users who do not secure their devices properly. | huaweiemui | Exploit Available | over 3 years agoAug 10, 2022 |
| CVE-2021-40030 | 7.5 | This vulnerability allows an attacker to potentially access sensitive data from the My HUAWEI app, which could compromise users' personal information. To exploit this flaw, the attacker would need to trick the app or its users in some way, making it crucial for users to be cautious about how they interact with the app. | huaweiemui | Theoretical | over 3 years agoAug 10, 2022 |
| CVE-2021-40032 | 7.5 | This vulnerability allows an attacker to potentially access sensitive data managed by the voice ID feature in Huawei's HarmonyOS, which could compromise user privacy. To exploit this flaw, the attacker would need to have access to the affected device or system where the voice ID is implemented. | huaweiharmonyos | Theoretical | about 4 years agoJan 10, 2022 |
| CVE-2021-40027 | 7.5 | An attacker can exploit a flaw in Huawei's HarmonyOS that improperly calculates buffer lengths, potentially allowing them to access sensitive data. This vulnerability requires the attacker to have the ability to interact with the affected system, which could lead to serious privacy breaches. | huaweiharmonyos | Exploit Available | about 4 years agoJan 10, 2022 |
| CVE-2021-40014 | 7.5 | An attacker can exploit a heap overflow vulnerability in Huawei's HarmonyOS to potentially access or manipulate sensitive data, compromising its confidentiality. This requires the attacker to run malicious code within the trusted application environment, which may not be easily achievable without prior access to the system. | huaweiharmonyos | Exploit Available | about 4 years agoJan 10, 2022 |
| CVE-2021-40006 | 4.6 | This vulnerability allows an attacker to potentially access sensitive information due to flaws in the security algorithms used by HarmonyOS. To exploit this, the attacker would need to find a way to interact with the affected system, which could compromise the confidentiality of the data. | huaweiharmonyos | Theoretical | about 4 years agoJan 10, 2022 |
About Huawei Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Huawei products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.