Primary

Context

Huawei HarmonyOS File Read Permission Bypass Vulnerability in Kernel File System Module

Vulnerability

Patched

A file read permission bypass vulnerability has been identified in the kernel file system module of Huawei HarmonyOS. This vulnerability allows for unauthorized access to files, potentially leading to the disclosure of sensitive information. It affects several different versions of HarmonyOS, including HarmonyOS 5.0.0, HarmonyOS 4.3.0, HarmonyOS 4.0.0, and EMUI 14.0.0.

Impact

Exploitation of this vulnerability may result in unauthorized access to confidential information.

Remediation

Users can refer to the Huawei Security Bulletin for April 2025 for guidance on applying the latest security updates that address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Huawei HarmonyOS File Read Permission Bypass Vulnerability in Kernel File System Module

Vulnerability

Impact

Remediation

Affected Products

Huawei HarmonyOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating