Bug Hunter Findings #
- 🟥 It is rated Critical by maintainer
- 🟧 It is rated High by maintainer
- 🟨 It is rated Medium by maintainer
- 🟩 It is rated Low by maintainer
- ✨ I think it’s high value
- 📌 It has a CVE number
Openharmony #
202301
-
[🟧] [✨] Integer overflow of pasteboard service leads to out-of-bounds read of heap data with controllable length 🔗
-
[🟨] [✨] The pasteboard service opens directly without verifying the uri and returns
fdto the client, resulting in arbitrary file reading 🔗
Trustzone #
202208
- [🟧] [✨] [📌CVE-2022-44556] DRM TA does not verify
paramTypes, resulting in arbitrary data read and write at any address that can be used by normal app 🔗