Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

OpenHarmony — Vulnerabilities & Security Advisories 167

All 167 CVE vulnerabilities found in OpenHarmony, with AI-generated Chinese analysis, references, and POCs.

Vendor: OpenHarmony

CVE IDTitleCVSSSeverityPaused
CVE-2025-6969 ability_ability_runtime an improper input validation vulnerability CWE-20 5.0 Medium2026-03-16
CVE-2025-26474 communication_ipc an improper input validation vulnerability CWE-20 3.3 Low2026-03-16
CVE-2025-52458 arkcompiler_ets_runtime has an out-of-bounds write vulnerability CWE-787 5.5 Medium2026-03-16
CVE-2025-41432 arkcompiler_ets_runtime has an out-of-bounds write vulnerability CWE-787 5.5 Medium2026-03-16
CVE-2025-25277 arkcompiler_ets_runtime has a type confusion vulnerability CWE-843 6.3 Medium2026-03-16
CVE-2025-12736 multimedia_audio_standard has an insecure storage of sensitive information vulnerability CWE-908 6.5 Medium2026-03-16
CVE-2026-0639 liteos_a has a missing release of memory vulnerability CWE-401 3.3 Low2026-03-16
CVE-2025-27562 communication_dsoftbus has a missing release of memory vulnerability CWE-401 3.3 Low2025-08-11
CVE-2025-27128 liteos_a has an UAF vulnerability CWE-416 8.4 High2025-08-11
CVE-2025-25212 pasteboard has an improper input vulnerability CWE-20 3.3 Low2025-08-11
CVE-2025-24844 communication_dsoftbus has a missing release of memory vulnerability CWE-401 3.3 Low2025-08-11
CVE-2025-27536 arkcompiler_ets_runtime has a type confusion vulnerability CWE-843 3.3 Low2025-08-11
CVE-2025-26690 communication dsoftbus has a NULL pointer vulnerability CWE-476 3.3 Low2025-08-11
CVE-2025-24925 applications_settings has a missing release of memory vulnerability CWE-401 3.3 Low2025-08-11
CVE-2025-24298 liteos_a has an UAF vulnerability CWE-416 8.4 High2025-08-11
CVE-2025-25278 liteos_a has a race condition vulnerability CWE-362 8.4 High2025-08-11
CVE-2025-27577 liteos_a has a race condition vulnerability CWE-362 8.4 High2025-08-11
CVE-2025-27247 Pasteboard has an improper preservation of permissions vulnerability CWE-281 5.5 Medium2025-06-08
CVE-2025-27242 Ssecurity_component_manager has an improper input vulnerability CWE-20 3.3 Low2025-06-08
CVE-2025-27563 security_access_token has an improper preservation of permissions vulnerability CWE-281 3.3 Low2025-06-08
CVE-2025-26693 security_access_token has an improper preservation of permissions vulnerability CWE-281 3.3 Low2025-06-08
CVE-2025-26691 telephony_call_manager has an improper preservation of permissions vulnerability CWE-281 5.5 Medium2025-06-08
CVE-2025-27131 kernel_liteos_m has an improper input vulnerability CWE-20 6.1 Medium2025-06-08
CVE-2025-24493 kernel_liteos_a has a race condition vulnerability CWE-362 5.5 Medium2025-06-08
CVE-2025-25217 arkui_ace_enginehas a NULL pointer dereference vulnerability CWE-476 3.3 Low2025-06-08
CVE-2025-23235 arkcompiler_ets_runtime has an out-of-bounds write vulnerability CWE-125 3.3 Low2025-06-08
CVE-2025-21082 arkui_ace_engine has a type confusion vulnerability CWE-843 3.3 Low2025-06-08
CVE-2025-20063 arkui_ace_engine has a type confusion vulnerability CWE-843 3.3 Low2025-06-08
CVE-2025-25052 arkcompiler_ets_runtime has a buffer overflow vulnerability CWE-120 3.3 Low2025-05-06
CVE-2025-27241 multimedia_av_codec has a NULL pointer dereference vulnerability CWE-476 3.3 Low2025-05-06

All 167 known CVE vulnerabilities affecting OpenHarmony with full Chinese analysis, references, and POCs where available.