Primary

Context

Huawei HarmonyOS and EMUI Permission Control Vulnerability in File Management Module

Vulnerability

Patched

A permission control vulnerability has been identified in the file management module of Huawei's HarmonyOS and EMUI. This vulnerability affects several versions of HarmonyOS, including 6.0.0, 5.1.0, 5.0.1, and earlier versions, as well as EMUI 15.0.0, 14.2.0, 14.0.0, 13.0.0, and 12.0.0. Successful exploitation of this vulnerability may impact service confidentiality.

Impact

Exploitation of this vulnerability may lead to unauthorized access to sensitive information, compromising service confidentiality.

Remediation

Users can refer to the Huawei November 2025 Security Bulletin for guidance on applying the latest security updates that address this vulnerability.

Added: Nov 28, 2025, 4:22 AM

Updated: Nov 28, 2025, 4:22 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

1.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

1.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Huawei HarmonyOS and EMUI Permission Control Vulnerability in File Management Module

Vulnerability

Impact

Remediation

Affected Products

Huawei HarmonyOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating