Primary

Context

Huawei HarmonyOS Deserialization Vulnerability in the Ability Module Affecting Availability

Vulnerability

Patched

A deserialization vulnerability has been identified in the ability module of Huawei's HarmonyOS. This vulnerability arises from the improper handling of untrusted data, which could be exploited to disrupt the normal functioning of the service. The issue is present in HarmonyOS versions 5.1.0 and 5.0.1.

Impact

Exploitation of this vulnerability can lead to availability issues, causing disruptions in the normal operation of the affected service.

Remediation

Users can refer to the Huawei August 2025 Security Bulletin for guidance on applying the latest security updates, which address this vulnerability.

Added: Aug 6, 2025, 3:34 AM

Updated: Aug 6, 2025, 3:34 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Huawei HarmonyOS Deserialization Vulnerability in the Ability Module Affecting Availability

Vulnerability

Impact

Remediation

Affected Products

Huawei HarmonyOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating