Primary

Context

Huawei HarmonyOS Input Verification Vulnerability in Compression Module Affecting Data Integrity

Vulnerability

Patched

A high-severity input verification vulnerability has been identified in the compression and decompression module of Huawei's HarmonyOS. This vulnerability affects several versions of HarmonyOS, including 5.1.0 and 5.0.1. Successful exploitation of this vulnerability may compromise the integrity of application data.

Impact

Exploitation of this vulnerability may lead to unauthorized modifications or corruption of app data, potentially allowing for the introduction of malicious data or the alteration of existing data in a harmful way.

Remediation

Users can refer to the Huawei December 2025 security bulletin for guidance on applying the latest security updates, which include patches for this vulnerability.

Added: Dec 8, 2025, 8:18 AM

Updated: Dec 8, 2025, 8:18 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.7

remediation

7.7

relevance

1.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.7

remediation

7.7

relevance

1.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Huawei HarmonyOS Input Verification Vulnerability in Compression Module Affecting Data Integrity

Vulnerability

Impact

Remediation

Affected Products

Huawei HarmonyOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating