5.5

CVSS3.1

CVE-2025-26691 - telephony_call_manager has an improper preservation of permissions vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission.

πŸ“… Published: June 8, 2025, 11:47 a.m. πŸ”„ Last Modified: June 9, 2025, 7:06 p.m.

6.1

CVSS3.1

CVE-2025-27131 - kernel_liteos_m has an improper input vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOSΒ through improper input.

πŸ“… Published: June 8, 2025, 11:46 a.m. πŸ”„ Last Modified: June 9, 2025, 7:06 p.m.

5.5

CVSS3.1

CVE-2025-24493 - kernel_liteos_a has a race condition vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through race condition.

πŸ“… Published: June 8, 2025, 11:46 a.m. πŸ”„ Last Modified: June 9, 2025, 7:07 p.m.

3.3

CVSS3.1

CVE-2025-25217 - arkui_ace_enginehas a NULL pointer dereference vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.

πŸ“… Published: June 8, 2025, 11:46 a.m. πŸ”„ Last Modified: June 9, 2025, 7:07 p.m.

3.3

CVSS3.1

CVE-2025-23235 - arkcompiler_ets_runtime has an out-of-bounds write vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through out-of-bounds read.

πŸ“… Published: June 8, 2025, 11:46 a.m. πŸ”„ Last Modified: June 9, 2025, 7:07 p.m.

3.3

CVSS3.1

CVE-2025-21082 - arkui_ace_engine has a type confusion vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause apps crash through type confusion.

πŸ“… Published: June 8, 2025, 11:46 a.m. πŸ”„ Last Modified: June 9, 2025, 7:07 p.m.

3.3

CVSS3.1

CVE-2025-20063 - arkui_ace_engine has a type confusion vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause apps crash through type confusion.

πŸ“… Published: June 8, 2025, 11:46 a.m. πŸ”„ Last Modified: June 9, 2025, 7:07 p.m.

7.1

CVSS3.1

CVE-2025-38004 - can: bcm: add locking for bcm_op runtime updates

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add locking for bcm_op runtime updates The CAN broadcast manager (CAN BCM) can send a sequence of CAN frames via hrtimer. The content and also the length of the sequence can be changed resp reduced at runtime where the …

πŸ“… Published: June 8, 2025, midnight πŸ”„ Last Modified: Dec. 17, 2025, 8:03 p.m.

5.5

CVSS3.1

CVE-2025-38003 - can: bcm: add missing rcu read protection for procfs content

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcm_op which is in the process to be removed the procfs output might show unreliable data (UAF). As the removal of bcm_op's …

πŸ“… Published: June 8, 2025, midnight πŸ”„ Last Modified: Dec. 17, 2025, 8:04 p.m.

6.9

CVSS4.0

CVE-2025-5840 - SourceCodester Client Database Management System user_update_customer_order.php unrestricted upload

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /user_update_customer_order.php. The manipulation of the argument uploaded_file leads to unrestricted upload. It is possible to initiate the…

πŸ“… Published: June 7, 2025, 6 p.m. πŸ”„ Last Modified: June 10, 2025, 3:45 p.m.
Total resulsts: 349182
Page 5125 of 34,919
Β« previous page Β» next page
Filters