Primary

Context

Huawei HarmonyOS Integer Overflow Vulnerability in 3D Engine Module

Vulnerability

An integer overflow vulnerability has been identified in the 3D engine module of Huawei HarmonyOS 5.0.0, during the loading of glTF models. This vulnerability could be exploited to affect the availability of the service.

Impact

Exploitation of this vulnerability may lead to a denial-of-service condition, causing the application or service to become unavailable or unresponsive.

Remediation

Users can apply the January 2025 security update to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Huawei HarmonyOS Integer Overflow Vulnerability in 3D Engine Module

Vulnerability

Impact

Remediation

Affected Products

Huawei HarmonyOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating