in OpenHarmony v6.0 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
Mar 16, 2026
Loading
Vendor coverage
Track published CVEs, severity trends, and remediation context for openatom products.
Search results
Showing 1-50 of 50 vulnerabilities.
in OpenHarmony v6.0 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
Mar 16, 2026
in OpenHarmony v5.1.0 and prior versions allow a local attacker cause DOS through improper input.
CVSS
5.0
MEDIUM
Published
Mar 16, 2026
in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVSS
5.5
MEDIUM
Published
Mar 16, 2026
in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVSS
5.5
MEDIUM
Published
Mar 16, 2026
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information improper input. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.3
LOW
Published
Mar 16, 2026
in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios.
CVSS
6.3
MEDIUM
Published
Mar 16, 2026
in OpenHarmony v5.0.3 and prior versions allow a local attacker case sensitive information leak through use of uninitialized resource.
CVSS
6.5
MEDIUM
Published
Mar 16, 2026
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through race condition.
CVSS
8.4
HIGH
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through type confusion.
CVSS
3.3
LOW
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free.
CVSS
8.4
HIGH
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.
CVSS
3.3
LOW
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through race condition.
CVSS
8.4
HIGH
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through improper input.
CVSS
3.3
LOW
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free.
CVSS
8.4
HIGH
Published
Aug 11, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.
CVSS
3.3
LOW
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.
CVSS
5.5
MEDIUM
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through improper input.
CVSS
3.3
LOW
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through improper input.
CVSS
6.1
MEDIUM
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.
CVSS
3.3
LOW
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.
CVSS
5.5
MEDIUM
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.
CVSS
3.3
LOW
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through race condition.
CVSS
5.5
MEDIUM
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through out-of-bounds read.
CVSS
3.3
LOW
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause apps crash through type confusion.
CVSS
3.3
LOW
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause apps crash through type confusion.
CVSS
3.3
LOW
Published
Jun 8, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.
CVSS
3.3
LOW
Published
May 6, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.
CVSS
3.3
LOW
Published
May 6, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.8
LOW
Published
May 6, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.
CVSS
3.3
LOW
Published
May 6, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through buffer overflow.
CVSS
3.3
LOW
Published
May 6, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
May 6, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
Apr 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker case DOS through missing release of memory.
CVSS
3.3
LOW
Published
Apr 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds write.
CVSS
3.3
LOW
Published
Apr 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through integer overflow.
CVSS
6.5
MEDIUM
Published
Apr 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.
CVSS
3.3
LOW
Published
Apr 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.
CVSS
3.3
LOW
Published
Apr 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.
CVSS
3.3
LOW
Published
Apr 7, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.8
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.8
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.8
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read.
CVSS
3.3
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.8
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.8
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVSS
3.8
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through buffer overflow.
CVSS
3.3
LOW
Published
Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through buffer overflow.
CVSS
3.3
LOW
Published
Mar 4, 2025