Primary

Context

Huawei HarmonyOS ParamWatcher Module Identity Verification Vulnerability

Vulnerability

An identity verification vulnerability has been identified in the ParamWatcher module of Huawei HarmonyOS. This vulnerability, present in HarmonyOS 5.0.0, could be exploited to affect the confidentiality of services.

Impact

Exploitation of this vulnerability may lead to unauthorized access to sensitive service information, potentially allowing for confidential data to be exposed or intercepted.

Remediation

Users can refer to the Huawei Security Bulletin for February 2025 for guidance on applying the latest security updates that address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.7

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.7

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Huawei HarmonyOS ParamWatcher Module Identity Verification Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Huawei HarmonyOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating