Harmonyos

This hub aggregates every CVE we track for Harmonyos, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Operating Systemson-premos

1,105

CVEs tracked

131

Critical

504

High

In CISA KEV

Severity distribution

HIGH504MEDIUM428CRITICAL131LOW42

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Harmonyos.

CVE-2026-41982Race condition vulnerability in the IPC module. Impact: Successful exploitation of this vulnerability may affect availability.6.4Jun 9, 2026
CVE-2026-41981Out-of-bounds write vulnerability in the IPC module. Impact: Successful exploitation of this vulnerability may affect availability.5.3Jun 9, 2026
CVE-2026-41977DoS vulnerability in the log service. Impact: Successful exploitation of this vulnerability may affect availability.5.0Jun 9, 2026
CVE-2026-41976Permission control vulnerability in the audio framework. Impact: Successful exploitation of this vulnerability may affect service confidentiality.6.6Jun 9, 2026
CVE-2026-41974Permission control vulnerability in service notifications. Impact: Successful exploitation of this vulnerability may affect availability.3.6Jun 9, 2026
CVE-2026-41973Permission control vulnerability in calls. Impact: Successful exploitation of this vulnerability may affect availability.5.9Jun 9, 2026
CVE-2026-41972Path traversal vulnerability in the SMS app. Impact: Successful exploitation of this vulnerability may affect availability.5.4Jun 9, 2026
CVE-2026-41986Logic bypass vulnerability in the file system. Impact: Successful exploitation of this vulnerability may affect availability.2.4Jun 9, 2026
CVE-2026-41985UAF vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service integrity.5.1Jun 9, 2026
CVE-2026-41984UAF vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service integrity.5.2Jun 9, 2026
CVE-2026-41983DoS vulnerability in the browser kernel. Impact: Successful exploitation of this vulnerability may affect availability.4.3Jun 9, 2026
CVE-2026-41980Permission control vulnerability in the file preview module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.5.5Jun 9, 2026
CVE-2026-41979Permission control vulnerability in the print module. Impact: Successful exploitation of this vulnerability may affect integrity and confidentiality.5.5Jun 9, 2026
CVE-2026-41978Permission control vulnerability in the clone module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.4.4Jun 9, 2026
CVE-2026-41975Permission management vulnerability in the network management module. Impact: Successful exploitation of this vulnerability may affect service integrity.6.3Jun 9, 2026

Product normalization is registry-driven with AI assist and human review. How it works