Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2021-37117

    There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.... Read more

    Affected Products : emui harmonyos magic_ui
    • EPSS Score: %0.22
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 9.1

    CRITICAL
    CVE-2021-37116

    PCManager has a Weaknesses Introduced During Design vulnerability .Successful exploitation of this vulnerability may cause that the PIN of the subscriber is changed.... Read more

    Affected Products : harmonyos
    • EPSS Score: %0.26
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2021-37115

    There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.... Read more

    Affected Products : emui
    • EPSS Score: %0.03
    • Published: Feb. 09, 2022
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2021-37114

    There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.... Read more

    Affected Products : emui harmonyos magic_ui
    • EPSS Score: %0.15
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-37113

    There is a Privilege escalation vulnerability with the file system component in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.... Read more

    Affected Products : emui harmonyos magic_ui
    • EPSS Score: %0.13
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2021-37112

    Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak.... Read more

    Affected Products : harmonyos
    • EPSS Score: %0.11
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-37111

    There is a Memory leakage vulnerability in Smartphone.Successful exploitation of this vulnerability may cause memory exhaustion.... Read more

    Affected Products : emui harmonyos magic_ui
    • EPSS Score: %0.22
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-37110

    There is a Timing design defects in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.... Read more

    Affected Products : emui harmonyos magic_ui
    • EPSS Score: %0.15
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2021-37109

    There is a security protection bypass vulnerability with the modem.Successful exploitation of this vulnerability may cause memory protection failure.... Read more

    Affected Products : emui
    • EPSS Score: %0.03
    • Published: Feb. 09, 2022
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2021-37107

    There is an improper memory access permission configuration on ACPU.Successful exploitation of this vulnerability may cause out-of-bounds access.... Read more

    Affected Products : emui
    • EPSS Score: %0.03
    • Published: Feb. 09, 2022
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2021-37106

    There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file. The software constructs part of a command using external special input from users, but the softwa... Read more

    Affected Products : fusioncompute
    • EPSS Score: %0.48
    • Published: Sep. 28, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-37105

    There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious files to the device... Read more

    Affected Products : fusioncompute
    • EPSS Score: %0.18
    • Published: Sep. 28, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-37104

    There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3). This vulnerability is due to insufficient validation of parameters while dealing with some messages. A successful exploit could allow the attacker to gain... Read more

    Affected Products : p40_firmware p40
    • EPSS Score: %0.13
    • Published: Sep. 28, 2021
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2021-37103

    There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality.... Read more

    Affected Products : emui magic_ui
    • EPSS Score: %0.06
    • Published: Feb. 25, 2022
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2021-37102

    There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficient... Read more

    Affected Products : fusioncompute
    • EPSS Score: %0.74
    • Published: Nov. 23, 2021
    • Modified: Nov. 21, 2024

  • 7.2

    HIGH
    CVE-2021-37101

    There is an improper authorization vulnerability in AIS-BW50-00 9.0.6.2(H100SP10C00) and 9.0.6.2(H100SP15C00). Due to improper authorization mangement, an attakcer can exploit this vulnerability by physical accessing the device and implant malicious code.... Read more

    Affected Products : ais-bw50-00_firmware ais-bw50-00
    • EPSS Score: %0.02
    • Published: Sep. 09, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-37100

    There is a Improper Authentication vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to account authentication bypassed.... Read more

    Affected Products : harmonyos
    • EPSS Score: %0.13
    • Published: Dec. 07, 2021
    • Modified: Nov. 21, 2024

  • 9.1

    CRITICAL
    CVE-2021-37099

    There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete any file.... Read more

    Affected Products : harmonyos
    • EPSS Score: %0.23
    • Published: Dec. 07, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-37098

    Hilinksvc service exists a Data Processing Errors vulnerability .Successful exploitation of this vulnerability may cause application crash.... Read more

    Affected Products : harmonyos
    • EPSS Score: %0.18
    • Published: Jan. 03, 2022
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2021-37097

    There is a Code Injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to system restart.... Read more

    Affected Products : emui harmonyos magic_ui
    • EPSS Score: %0.28
    • Published: Dec. 08, 2021
    • Modified: Nov. 21, 2024
Showing 20 of 291659 Results