Primary

Context

Huawei HarmonyOS Gallery Module Arbitrary Write Vulnerability

Vulnerability

Patched

An arbitrary write vulnerability has been identified in the Gallery module of Huawei's HarmonyOS. This vulnerability, present in HarmonyOS 5.0.0, could be exploited to write arbitrary data, potentially leading to unauthorized modifications or disruptions in service. Successful exploitation may also impact the confidentiality of user data or services.

Impact

Exploitation of this vulnerability could result in unauthorized data modifications and a breach of service confidentiality.

Remediation

Users can refer to the Huawei Security Bulletin for February 2025 for guidance on applying the latest security updates, which address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Huawei HarmonyOS Gallery Module Arbitrary Write Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Huawei HarmonyOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating