cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-57962,https://securityvulnerability.io/vulnerability/CVE-2024-57962,Incomplete Verification Vulnerability in Huawei VPN Service Module,"The Huawei VPN Service Module exhibits a vulnerability characterized by incomplete verification of information, which may leave the service exposed to manipulation. Attackers exploiting this flaw could potentially impact the availability of the VPN service, posing significant risks to users relying on the module for secure communications. It is imperative for users to remain informed about potential threats and apply necessary updates or mitigations to safeguard their network environments.",Huawei,Harmonyos,6.1,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:34:43.361Z,0
CVE-2024-57961,https://securityvulnerability.io/vulnerability/CVE-2024-57961,Out-of-Bounds Write Vulnerability in Huawei Devices,"An out-of-bounds write vulnerability in the emcom module of certain Huawei devices could lead to abnormal feature performance. Attackers potentially exploiting this weakness may disrupt normal operations, presenting a serious concern for device stability and integrity. Users are urged to prioritize updates to safeguard against potential exploitation.",Huawei,"Harmonyos,Emui",6.8,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:33:50.291Z,0
CVE-2024-57960,https://securityvulnerability.io/vulnerability/CVE-2024-57960,Input Verification Vulnerability in Huawei ExternalStorageProvider Module,The ExternalStorageProvider module developed by Huawei has been identified with an input verification vulnerability that could allow unauthorized access to sensitive data. This flaw compromises the confidentiality of services provided by the module. Organizations utilizing this product should prioritize reviewing their configurations and applying any necessary updates to mitigate potential risks.,Huawei,"Harmonyos,Emui",7.7,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:32:39.794Z,0
CVE-2024-57959,https://securityvulnerability.io/vulnerability/CVE-2024-57959,Use-After-Free Vulnerability in Huawei Display Module,"A use-after-free vulnerability in the Huawei display module may allow attackers to exploit certain features, leading to abnormal performance behavior. This vulnerability can be triggered under specific conditions, resulting in potential disruption of normal operations. Users are advised to implement security patches provided by Huawei to mitigate risks associated with this issue.",Huawei,"Harmonyos,Emui",6.1,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:31:09.281Z,0
CVE-2024-57958,https://securityvulnerability.io/vulnerability/CVE-2024-57958,Out-of-Bounds Array Read Vulnerability in Huawei's FFRT Module,"The vulnerability in Huawei's FFRT module allows for out-of-bounds array reads. This can lead to abnormal behavior of the module, impacting the overall functionality and reliability of applications relying on it. Proper measures should be taken to ensure systems are safeguarded against potential exploitation.",Huawei,"Harmonyos,Emui",5.7,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:29:41.313Z,0
CVE-2024-12602,https://securityvulnerability.io/vulnerability/CVE-2024-12602,Identity Verification Vulnerability in Huawei ParamWatcher Module,"The ParamWatcher module by Huawei contains an identity verification vulnerability that, if exploited, could compromise the confidentiality of services. This flaw may allow unauthorized access to sensitive information, making it critical for organizations to address this issue promptly to safeguard their systems.",Huawei,Harmonyos,6.2,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:27:58.753Z,0
CVE-2024-57957,https://securityvulnerability.io/vulnerability/CVE-2024-57957,Improper Log Information Control Vulnerability in Huawei UI Framework,"The Huawei UI framework module is plagued by a vulnerability that arises from improper handling of log information. This can potentially lead to unauthorized access to sensitive information, compromising service confidentiality. Exploiting this weakness may allow attackers to gain access to logs that should be restricted, showcasing a significant risk for organizations using this framework. Effective mitigation strategies are essential to safeguard against such exploits.",Huawei,Harmonyos,6.6,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:27:07.878Z,0
CVE-2024-57956,https://securityvulnerability.io/vulnerability/CVE-2024-57956,Out-of-Bounds Read Vulnerability in Huawei's Interpreter String Module,"An out-of-bounds read vulnerability has been identified in Huawei's Interpreter String Module. This issue can be exploited to potentially compromise the availability of the affected system. When an attacker leverages this vulnerability, they may gain unauthorized access to sensitive data or experience disrupted service, underscoring the importance of timely updates and security practices in mitigating such risks. Users of affected Huawei products are advised to review their system configurations and apply recommended patches to safeguard against exploitation.",Huawei,Harmonyos,2.8,LOW,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:26:10.611Z,0
CVE-2024-57955,https://securityvulnerability.io/vulnerability/CVE-2024-57955,Arbitrary Write Vulnerability in Huawei Gallery Module,"The Gallery module in Huawei's software has been found to possess an arbitrary write vulnerability. This flaw allows malicious actors to manipulate files or data within the system, potentially leading to unauthorized access and compromise of service confidentiality. Users are advised to monitor their systems and apply any available patches to mitigate risks associated with this vulnerability.",Huawei,Harmonyos,6.1,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:25:22.348Z,0
CVE-2024-57954,https://securityvulnerability.io/vulnerability/CVE-2024-57954,Permission Verification Issue in Media Library Module from Huawei,"A permission verification vulnerability in the Media Library Module from Huawei could allow unauthorized access to sensitive information. If exploited, this vulnerability may compromise the confidentiality of the service, exposing critical data to unauthorized users. Organizations using the affected versions of the Media Library Module should prioritize applying security patches to mitigate potential risks.",Huawei,Harmonyos,6.2,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-06T12:23:41.778Z,0
CVE-2024-54121,https://securityvulnerability.io/vulnerability/CVE-2024-54121,Startup Control Vulnerability in Ability Module Affecting Huawei Products,"The vulnerability in the Ability module allows for a startup control issue that could lead to abnormal performance of features within affected Huawei products. Exploiting this flaw may result in unintended behavior, impacting the functionality and user experience. Users are encouraged to apply the latest patches as recommended.",Huawei,Harmonyos,7.5,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-01-08T03:24:36.500Z,0
CVE-2024-56456,https://securityvulnerability.io/vulnerability/CVE-2024-56456,Input Parameter Validation Flaw in 3D Engine Module Affects Huawei Products,"A vulnerability exists in the 3D engine module due to insufficient verification of input parameters during the loading of glTF models. Exploitation of this issue could potentially disrupt system availability, making it essential for users to apply security measures and updates as recommended by Huawei.",Huawei,Harmonyos,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-08T03:23:40.211Z,0
CVE-2024-56455,https://securityvulnerability.io/vulnerability/CVE-2024-56455,Input Parameter Validation Flaw in 3D Engine by Huawei,"A vulnerability exists in Huawei's 3D engine module due to improper validation of input parameters during glTF model loading. This flaw could potentially allow an attacker to manipulate input parameters, leading to availability issues within the affected systems. Proper input validation mechanisms are essential to prevent the exploitation of this vulnerability and safeguard the integrity of 3D rendering processes.",Huawei,Harmonyos,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-08T03:22:45.758Z,0
CVE-2024-56454,https://securityvulnerability.io/vulnerability/CVE-2024-56454,Input Parameter Verification Flaw in 3D Engine Module by Huawei,"A vulnerability exists in Huawei's 3D engine module due to inadequate verification of input parameters during the loading of glTF models. This weakness can be exploited to affect the system's availability, potentially leading to disruptions in service. It is essential for users and administrators to address this issue promptly to mitigate risks associated with the processing of 3D models.",Huawei,Harmonyos,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-08T03:21:46.204Z,0
CVE-2024-56453,https://securityvulnerability.io/vulnerability/CVE-2024-56453,Input Parameter Validation Flaw in Huawei's 3D Engine Module,"A vulnerability exists in Huawei's 3D Engine Module where input parameters are not properly validated during the loading of glTF models. This flaw could potentially lead to disruptions in service availability, allowing malicious actors to manipulate model loading processes. Ensuring rigorous input validation is essential to mitigate the risks associated with this vulnerability.",Huawei,Harmonyos,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-08T03:18:32.152Z,0
CVE-2024-56452,https://securityvulnerability.io/vulnerability/CVE-2024-56452,Input Parameter Verification Issue in Huawei's 3D Engine Module,"This vulnerability arises from the failure to adequately verify input parameters during the loading of glTF models in Huawei's 3D engine module. As a result, attackers could exploit this flaw to potentially disrupt system availability by injecting malicious input, ultimately affecting the application’s performance and user experience. Proper input validation mechanisms are crucial to prevent such exploits and ensure the integrity of the 3D engine operations.",Huawei,Harmonyos,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-08T03:17:19.704Z,0
CVE-2024-56451,https://securityvulnerability.io/vulnerability/CVE-2024-56451,Integer Overflow Vulnerability in 3D Engine Module by Huawei,"An integer overflow vulnerability has been identified during the loading of glTF models within Huawei's 3D engine module. This flaw can potentially hinder the availability of services reliant on the affected engine, allowing for possible exploitation by malicious entities. Proper mitigation strategies should be implemented to safeguard systems against potential disruptions.",Huawei,Harmonyos,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-08T03:16:10.615Z,0
CVE-2024-56450,https://securityvulnerability.io/vulnerability/CVE-2024-56450,Buffer Overflow Vulnerability in Huawei Driver Module,"A buffer overflow vulnerability has been identified in the driver module used by Huawei products. This flaw allows an attacker to exploit the system by overflowing the buffer, potentially leading to system instability and impacting availability. Mitigation measures are essential to safeguard against potential exploitation.",Huawei,"Harmonyos,Emui",5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-08T03:14:51.159Z,0
CVE-2024-56449,https://securityvulnerability.io/vulnerability/CVE-2024-56449,Privilege Escalation Vulnerability in Huawei Account Module,"The vulnerability enables a user to gain elevated privileges within Huawei's Account module, potentially compromising service confidentiality. If exploited, it could allow unauthorized access to sensitive data and functionality, making it critical for affected users to apply the latest security patches promptly to mitigate the risk.",Huawei,"Harmonyos,Emui",7.5,HIGH,0.0008699999889358878,false,,false,false,false,,false,false,false,,2025-01-08T03:13:25.971Z,0
CVE-2024-56448,https://securityvulnerability.io/vulnerability/CVE-2024-56448,Improper Access Control in Huawei Home Screen Widget Module,"The vulnerability involves improper access control mechanisms within the home screen widget module of Huawei devices. This flaw could lead to unauthorized access or exploitation, potentially compromising user security and affecting the availability of the affected systems. It underscores the importance of implementing robust access control measures in software development to safeguard users against potential attacks.",Huawei,"Harmonyos,Emui",7.5,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-01-08T03:11:56.159Z,0
CVE-2024-56447,https://securityvulnerability.io/vulnerability/CVE-2024-56447,Improper Permission Control in Huawei's Window Management Module,"The vulnerability involves improper permission control within Huawei's window management module. Exploiting this flaw could potentially compromise service confidentiality, allowing unauthorized access to sensitive information. Users are advised to update to the latest version as a precaution against possible exploitation. For detailed guidance, refer to Huawei's security bulletin.",Huawei,"Harmonyos,Emui",7.5,HIGH,0.0008699999889358878,false,,false,false,false,,false,false,false,,2025-01-08T03:03:11.490Z,0
CVE-2024-56446,https://securityvulnerability.io/vulnerability/CVE-2024-56446,Notification Module Vulnerability in Huawei Product,"A security issue exists in Huawei's Notification Module due to uninitialized variables. Failure to properly initialize these variables can lead to potential disruptions in service availability, allowing unauthorized access or manipulation of the system. Administrators should be aware of this vulnerability to mitigate any risks associated with the exploitation of uninitialized variables.",Huawei,Harmonyos,7.5,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-01-08T03:01:49.820Z,0
CVE-2024-56445,https://securityvulnerability.io/vulnerability/CVE-2024-56445,Instruction Authentication Bypass Vulnerability in Findnetwork Module by Huawei,"The Findnetwork module by Huawei has a vulnerability that allows for instruction authentication bypass. This flaw can result in abnormal performance of the module’s features, potentially compromising the integrity and functionality of systems relying on it. User actions may be manipulated without the proper authorization, posing significant risks to network security.",Huawei,Harmonyos,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-01-08T03:00:46.813Z,0
CVE-2024-56444,https://securityvulnerability.io/vulnerability/CVE-2024-56444,Cross-Process Screen Stack Vulnerability in Huawei UIExtension Module,"The UIExtension module developed by Huawei contains a cross-process screen stack vulnerability. This flaw allows an attacker to exploit the system, possibly leading to a compromise of service confidentiality. It is crucial for users to be aware of this vulnerability and apply the necessary security measures to protect their systems.",Huawei,Harmonyos,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,false,false,false,,2025-01-08T02:44:26.370Z,0
CVE-2024-56443,https://securityvulnerability.io/vulnerability/CVE-2024-56443,Cross-Process Screen Stack Flaw in UIExtension Module by Huawei,"The UIExtension module developed by Huawei contains a vulnerability that allows for cross-process screen stack attacks. Exploiting this flaw may compromise the confidentiality of sensitive services, enabling unauthorized access to information. Organizations using affected versions of the UIExtension module should implement immediate security measures to safeguard against potential exploitation.",Huawei,Harmonyos,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,false,false,false,,2025-01-08T02:37:31.730Z,0