Huawei Harmonyos

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Huawei Harmonyos.

By the Year

In 2026 there have been 52 vulnerabilities in Huawei Harmonyos with an average score of 6.2 out of ten. Last year, in 2025 Harmonyos had 189 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Harmonyos in 2026 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.01.

Year	Vulnerabilities	Average Score
2026	52	6.19
2025	189	6.18
2024	187	6.55
2023	197	7.54
2022	257	7.54
2021	118	7.21

It may take a day or so for new Harmonyos vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Huawei Harmonyos Security Vulnerabilities

Huawei HarmonyOS SysService Framework Permission Bypass
CVE-2026-28542 7.3 - High - March 05, 2026

Permission bypass vulnerability in the system service framework. Impact: Successful exploitation of this vulnerability may affect availability.

Improper Handling of Exceptional Conditions

Huawei Email App Improper Verification may Expose Service Confidential
CVE-2026-28548 7.1 - High - March 05, 2026

Vulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Improper Privilege Management

Huawei Device Security Mgmt Module Race Condition
CVE-2026-28551 4.7 - Medium - March 05, 2026

Race condition vulnerability in the device security management module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Race condition in Huawei permission management service (CVE-2026-28549)
CVE-2026-28549 6.6 - Medium - March 05, 2026

Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Uninitialized Pointer Access in Huawei Scanning Module Causing DoS
CVE-2026-28547 6.8 - Medium - March 05, 2026

Vulnerability of uninitialized pointer access in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.

Access of Uninitialized Pointer

Huawei Scanning Module Buffer Overflow (CVE-2026-28546)
CVE-2026-28546 5.9 - Medium - March 05, 2026

Buffer overflow vulnerability in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.

Heap-based Buffer Overflow

Huawei MaintnDiag Module Race Condition Affects Availability
CVE-2026-28543 4.4 - Medium - March 05, 2026

Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Huawei HarmonyOS Cellular_Data Permission Issue (CVE-2026-28541)
CVE-2026-28541 4 - Medium - March 05, 2026

Permission control vulnerability in the cellular_data module. Impact: Successful exploitation of this vulnerability may affect availability.

Permissions, Privileges, and Access Controls

Huawei Bluetooth OOB Char Read CVE-2026-28540
CVE-2026-28540 4 - Medium - March 05, 2026

Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Improper Neutralization of Null Byte or NUL Character

Huawei CVE-2026-28539: Data Processing Vulnerability in Cert Management Mod
CVE-2026-28539 6.2 - Medium - March 05, 2026

Data processing vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Data Processing Errors

Huawei CertMgr Path Traversal Vulnerability
CVE-2026-28538 5.9 - Medium - March 05, 2026

Path traversal vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect availability.

Path Traversal: '../filedir'

Huawei Cloud Resource Scheduler Permission Control Flaw
CVE-2025-66319 3.3 - Low - March 05, 2026

Permission control vulnerability in the resource scheduling module. Impact: Successful exploitation of this vulnerability may affect service integrity.

Permissions, Privileges, and Access Controls

Huawei IMS Module OOB Write Availability Impact
CVE-2026-28552 6.5 - Medium - March 05, 2026

Out-of-bounds write vulnerability in the IMS module. Impact: Successful exploitation of this vulnerability may affect availability.

Data Processing Errors

Race Condition in Huawei Security Control Module
CVE-2026-28550 4 - Medium - March 05, 2026

Race condition vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect availability.

Business Logic Errors

Race Condition in Huawei Printing Module Causing DoS
CVE-2026-28545 5.9 - Medium - March 05, 2026

Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Huawei Printing Module Race Condition (CVE-2026-28544)
CVE-2026-28544 6.2 - Medium - March 05, 2026

Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Huawei HarmonyOS Double-free in Window Module
CVE-2026-28537 5.1 - Medium - March 05, 2026

Double free vulnerability in the window module. Impact: Successful exploitation of this vulnerability may affect availability.

Double-free

Authentication Bypass in Huawei Device Auth Module
CVE-2026-28536 9.6 - Critical - March 05, 2026

Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

Authentication Bypass by Primary Weakness

OOB Write in File System Module CVE-2026-24928
CVE-2026-24928 5.8 - Medium - February 06, 2026

Out-of-bounds write vulnerability in the file system module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Integer Overflow to Buffer Overflow

CVE-2026-24927: OOB Access in FM Mod Module Availability Risk
CVE-2026-24927 5.5 - Medium - February 06, 2026

Out-of-bounds access vulnerability in the frequency modulation module. Impact: Successful exploitation of this vulnerability may affect availability.

Dangling pointer

Improper Permission Control in Print Module Exposes Service Confidentiality
CVE-2026-24924 6.1 - Medium - February 06, 2026

Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Permissions, Privileges, and Access Controls

Permission Control Vulnerability in AMS Module
CVE-2026-24920 6.2 - Medium - February 06, 2026

Permission control vulnerability in the AMS module. Impact: Successful exploitation of this vulnerability may affect availability.

Permissions, Privileges, and Access Controls

DFX Module OOB Write Vulnerability
CVE-2026-24919 6 - Medium - February 06, 2026

Out-of-bounds write vulnerability in the DFX module. Impact: Successful exploitation of this vulnerability may affect availability.

Memory Corruption

UAF in Security Module via CVE-2026-24917
CVE-2026-24917 6.5 - Medium - February 06, 2026

UAF vulnerability in the security module. Impact: Successful exploitation of this vulnerability may affect availability.

Dangling pointer

CVE-2026-24916 Auth Bypass in Window Module
CVE-2026-24916 5.9 - Medium - February 06, 2026

Identity authentication bypass vulnerability in the window module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Information Disclosure

Card Module Improper Security Check CVE-2026-24931
CVE-2026-24931 5.9 - Medium - February 06, 2026

Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Permissions, Privileges, and Access Controls

UAF Concurrency Vulnerability in Graphics Module
CVE-2026-24930 8.4 - High - February 06, 2026

UAF concurrency vulnerability in the graphics module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

OOB read in graphics module leads to potential DoS
CVE-2026-24929 5.9 - Medium - February 06, 2026

Out-of-bounds read vulnerability in the graphics module. Impact: Successful exploitation of this vulnerability may affect availability.

NULL Pointer Dereference

HDC module permission control flaw compromises confidentiality
CVE-2026-24923 6.3 - Medium - February 06, 2026

Permission control vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Permissions, Privileges, and Access Controls

Buffer Overflow in HDC Module (CVE-2026-24922)
CVE-2026-24922 6.9 - Medium - February 06, 2026

Buffer overflow vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability may affect availability.

Heap-based Buffer Overflow

Addr Read CVE-2026-24921 in HDC Mod Compromises Avail & Conf
CVE-2026-24921 4.8 - Medium - February 06, 2026

Address read vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

Out-of-bounds Read

AR CVE-2026-24918: Address Read Vulnerability in Comm Module
CVE-2026-24918 6.8 - Medium - February 06, 2026

Address read vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.

NULL Pointer Dereference

CVE-2026-24915: OOB read in Linux kernel media subsystem
CVE-2026-24915 6.2 - Medium - February 06, 2026

Out-of-bounds read issue in the media subsystem. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

Out-of-bounds Read

Android Camera Module Type Confusion DoS Vulnerability
CVE-2026-24914 4 - Medium - February 06, 2026

Type confusion vulnerability in the camera module. Impact: Successful exploitation of this vulnerability may affect availability.

Dangling pointer

CVE-2026-24926: Camera Module OOB Write (Availability Impact)
CVE-2026-24926 8.4 - High - February 06, 2026

Out-of-bounds write vulnerability in the camera module. Impact: Successful exploitation of this vulnerability may affect availability.

Memory Corruption

Image Module Heap-Based Buffer Overflow (CVE-2026-24925)
CVE-2026-24925 7.3 - High - February 06, 2026

Heap-based buffer overflow vulnerability in the image module. Impact: Successful exploitation of this vulnerability may affect availability.

Heap-based Buffer Overflow

Huawei MediaLib: Permission Bypass in Media Library Module
CVE-2025-68959 6.2 - Medium - January 14, 2026

Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Information Disclosure

Huawei Media Library Module Permission Bypass (CVE-2025-68970)
CVE-2025-68970 6.1 - Medium - January 14, 2026

Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Improper Input Validation

MI-M Attack on Huawei Clone Module
CVE-2025-68963 5.7 - Medium - January 14, 2026

Man-in-the-middle attack vulnerability in the Clone module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Weak Password Requirements

Huawei Print Module Improper Permission Control Vulnerability
CVE-2025-68967 5.7 - Medium - January 14, 2026

Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Permissions, Privileges, and Access Controls

Huawei Notepad Module Permission Control Flaw
CVE-2025-68966 5.1 - Medium - January 14, 2026

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Information Disclosure

Huawei Notepad Permission Control Flaw Exposes Service Confidentiality
CVE-2025-68965 4.7 - Medium - January 14, 2026

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Information Disclosure

Huawei HiView module: Data verification flaw causing DoS
CVE-2025-68964 6.2 - Medium - January 14, 2026

Data verification vulnerability in the HiView module. Impact: Successful exploitation of this vulnerability may affect availability.

Improper Input Validation

Huawei Thermal Mgmt Module Race Condition (CVE-2025-68969)
CVE-2025-68969 6.8 - Medium - January 14, 2026

Multi-thread race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Huawei Input Module Double-Free Vulnerability
CVE-2025-68968 7.8 - High - January 14, 2026

Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this vulnerability may affect the input function.

Huawei Android Camera Frmwk Thread RACE: Availability Impact
CVE-2025-68962 5.1 - Medium - January 14, 2026

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Huawei Camera Framework Thread Race Condition (Availability)
CVE-2025-68961 5.1 - Medium - January 14, 2026

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Huawei Video Framework RACE causes availability loss
CVE-2025-68960 8.4 - High - January 14, 2026

Multi-thread race condition vulnerability in the video framework module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

CVE-2025-68958: Multi-thread Race Condition in Huawei Card Framework
CVE-2025-68958 8 - High - January 14, 2026

Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Huawei Card Framework Multithread Race Condition
CVE-2025-68957 8.4 - High - January 14, 2026

Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.

Race Condition

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Huawei Harmonyos or by Huawei? Click the Watch button to subscribe.

Huawei
Vendor

Huawei Harmonyos
Product

Huawei Harmonyos

Don't miss out!

By the Year

Recent Huawei Harmonyos Security Vulnerabilities

Huawei HarmonyOS SysService Framework Permission Bypass CVE-2026-28542 7.3 - High - March 05, 2026

Huawei Email App Improper Verification may Expose Service Confidential CVE-2026-28548 7.1 - High - March 05, 2026

Huawei Device Security Mgmt Module Race Condition CVE-2026-28551 4.7 - Medium - March 05, 2026

Race condition in Huawei permission management service (CVE-2026-28549) CVE-2026-28549 6.6 - Medium - March 05, 2026

Uninitialized Pointer Access in Huawei Scanning Module Causing DoS CVE-2026-28547 6.8 - Medium - March 05, 2026

Huawei Scanning Module Buffer Overflow (CVE-2026-28546) CVE-2026-28546 5.9 - Medium - March 05, 2026

Huawei MaintnDiag Module Race Condition Affects Availability CVE-2026-28543 4.4 - Medium - March 05, 2026

Huawei HarmonyOS Cellular_Data Permission Issue (CVE-2026-28541) CVE-2026-28541 4 - Medium - March 05, 2026

Huawei Bluetooth OOB Char Read CVE-2026-28540 CVE-2026-28540 4 - Medium - March 05, 2026

Huawei CVE-2026-28539: Data Processing Vulnerability in Cert Management Mod CVE-2026-28539 6.2 - Medium - March 05, 2026

Huawei CertMgr Path Traversal Vulnerability CVE-2026-28538 5.9 - Medium - March 05, 2026

Huawei Cloud Resource Scheduler Permission Control Flaw CVE-2025-66319 3.3 - Low - March 05, 2026

Huawei IMS Module OOB Write Availability Impact CVE-2026-28552 6.5 - Medium - March 05, 2026

Race Condition in Huawei Security Control Module CVE-2026-28550 4 - Medium - March 05, 2026

Race Condition in Huawei Printing Module Causing DoS CVE-2026-28545 5.9 - Medium - March 05, 2026

Huawei Printing Module Race Condition (CVE-2026-28544) CVE-2026-28544 6.2 - Medium - March 05, 2026

Huawei HarmonyOS Double-free in Window Module CVE-2026-28537 5.1 - Medium - March 05, 2026

Authentication Bypass in Huawei Device Auth Module CVE-2026-28536 9.6 - Critical - March 05, 2026

OOB Write in File System Module CVE-2026-24928 CVE-2026-24928 5.8 - Medium - February 06, 2026

CVE-2026-24927: OOB Access in FM Mod Module Availability Risk CVE-2026-24927 5.5 - Medium - February 06, 2026

Improper Permission Control in Print Module Exposes Service Confidentiality CVE-2026-24924 6.1 - Medium - February 06, 2026

Permission Control Vulnerability in AMS Module CVE-2026-24920 6.2 - Medium - February 06, 2026

DFX Module OOB Write Vulnerability CVE-2026-24919 6 - Medium - February 06, 2026

UAF in Security Module via CVE-2026-24917 CVE-2026-24917 6.5 - Medium - February 06, 2026

CVE-2026-24916 Auth Bypass in Window Module CVE-2026-24916 5.9 - Medium - February 06, 2026

Card Module Improper Security Check CVE-2026-24931 CVE-2026-24931 5.9 - Medium - February 06, 2026

UAF Concurrency Vulnerability in Graphics Module CVE-2026-24930 8.4 - High - February 06, 2026

OOB read in graphics module leads to potential DoS CVE-2026-24929 5.9 - Medium - February 06, 2026

HDC module permission control flaw compromises confidentiality CVE-2026-24923 6.3 - Medium - February 06, 2026

Buffer Overflow in HDC Module (CVE-2026-24922) CVE-2026-24922 6.9 - Medium - February 06, 2026

Addr Read CVE-2026-24921 in HDC Mod Compromises Avail & Conf CVE-2026-24921 4.8 - Medium - February 06, 2026

AR CVE-2026-24918: Address Read Vulnerability in Comm Module CVE-2026-24918 6.8 - Medium - February 06, 2026

CVE-2026-24915: OOB read in Linux kernel media subsystem CVE-2026-24915 6.2 - Medium - February 06, 2026

Android Camera Module Type Confusion DoS Vulnerability CVE-2026-24914 4 - Medium - February 06, 2026

CVE-2026-24926: Camera Module OOB Write (Availability Impact) CVE-2026-24926 8.4 - High - February 06, 2026

Image Module Heap-Based Buffer Overflow (CVE-2026-24925) CVE-2026-24925 7.3 - High - February 06, 2026

Huawei MediaLib: Permission Bypass in Media Library Module CVE-2025-68959 6.2 - Medium - January 14, 2026

Huawei Media Library Module Permission Bypass (CVE-2025-68970) CVE-2025-68970 6.1 - Medium - January 14, 2026

MI-M Attack on Huawei Clone Module CVE-2025-68963 5.7 - Medium - January 14, 2026

Huawei Print Module Improper Permission Control Vulnerability CVE-2025-68967 5.7 - Medium - January 14, 2026

Huawei Notepad Module Permission Control Flaw CVE-2025-68966 5.1 - Medium - January 14, 2026

Huawei Notepad Permission Control Flaw Exposes Service Confidentiality CVE-2025-68965 4.7 - Medium - January 14, 2026

Huawei HiView module: Data verification flaw causing DoS CVE-2025-68964 6.2 - Medium - January 14, 2026

Huawei Thermal Mgmt Module Race Condition (CVE-2025-68969) CVE-2025-68969 6.8 - Medium - January 14, 2026

Huawei Input Module Double-Free Vulnerability CVE-2025-68968 7.8 - High - January 14, 2026

Huawei Android Camera Frmwk Thread RACE: Availability Impact CVE-2025-68962 5.1 - Medium - January 14, 2026

Huawei Camera Framework Thread Race Condition (Availability) CVE-2025-68961 5.1 - Medium - January 14, 2026

Huawei Video Framework RACE causes availability loss CVE-2025-68960 8.4 - High - January 14, 2026

CVE-2025-68958: Multi-thread Race Condition in Huawei Card Framework CVE-2025-68958 8 - High - January 14, 2026

Huawei Card Framework Multithread Race Condition CVE-2025-68957 8.4 - High - January 14, 2026

Stay on top of Security Vulnerabilities

Huawei Vendor

Huawei HarmonyosProduct

Huawei HarmonyOS SysService Framework Permission Bypass
CVE-2026-28542 7.3 - High - March 05, 2026

Huawei Email App Improper Verification may Expose Service Confidential
CVE-2026-28548 7.1 - High - March 05, 2026

Huawei Device Security Mgmt Module Race Condition
CVE-2026-28551 4.7 - Medium - March 05, 2026

Race condition in Huawei permission management service (CVE-2026-28549)
CVE-2026-28549 6.6 - Medium - March 05, 2026

Uninitialized Pointer Access in Huawei Scanning Module Causing DoS
CVE-2026-28547 6.8 - Medium - March 05, 2026

Huawei Scanning Module Buffer Overflow (CVE-2026-28546)
CVE-2026-28546 5.9 - Medium - March 05, 2026

Huawei MaintnDiag Module Race Condition Affects Availability
CVE-2026-28543 4.4 - Medium - March 05, 2026

Huawei HarmonyOS Cellular_Data Permission Issue (CVE-2026-28541)
CVE-2026-28541 4 - Medium - March 05, 2026

Huawei Bluetooth OOB Char Read CVE-2026-28540
CVE-2026-28540 4 - Medium - March 05, 2026

Huawei CVE-2026-28539: Data Processing Vulnerability in Cert Management Mod
CVE-2026-28539 6.2 - Medium - March 05, 2026

Huawei CertMgr Path Traversal Vulnerability
CVE-2026-28538 5.9 - Medium - March 05, 2026

Huawei Cloud Resource Scheduler Permission Control Flaw
CVE-2025-66319 3.3 - Low - March 05, 2026

Huawei IMS Module OOB Write Availability Impact
CVE-2026-28552 6.5 - Medium - March 05, 2026

Race Condition in Huawei Security Control Module
CVE-2026-28550 4 - Medium - March 05, 2026

Race Condition in Huawei Printing Module Causing DoS
CVE-2026-28545 5.9 - Medium - March 05, 2026

Huawei Printing Module Race Condition (CVE-2026-28544)
CVE-2026-28544 6.2 - Medium - March 05, 2026

Huawei HarmonyOS Double-free in Window Module
CVE-2026-28537 5.1 - Medium - March 05, 2026

Authentication Bypass in Huawei Device Auth Module
CVE-2026-28536 9.6 - Critical - March 05, 2026

OOB Write in File System Module CVE-2026-24928
CVE-2026-24928 5.8 - Medium - February 06, 2026

CVE-2026-24927: OOB Access in FM Mod Module Availability Risk
CVE-2026-24927 5.5 - Medium - February 06, 2026

Improper Permission Control in Print Module Exposes Service Confidentiality
CVE-2026-24924 6.1 - Medium - February 06, 2026

Permission Control Vulnerability in AMS Module
CVE-2026-24920 6.2 - Medium - February 06, 2026

DFX Module OOB Write Vulnerability
CVE-2026-24919 6 - Medium - February 06, 2026

UAF in Security Module via CVE-2026-24917
CVE-2026-24917 6.5 - Medium - February 06, 2026

CVE-2026-24916 Auth Bypass in Window Module
CVE-2026-24916 5.9 - Medium - February 06, 2026

Card Module Improper Security Check CVE-2026-24931
CVE-2026-24931 5.9 - Medium - February 06, 2026

UAF Concurrency Vulnerability in Graphics Module
CVE-2026-24930 8.4 - High - February 06, 2026

OOB read in graphics module leads to potential DoS
CVE-2026-24929 5.9 - Medium - February 06, 2026

HDC module permission control flaw compromises confidentiality
CVE-2026-24923 6.3 - Medium - February 06, 2026

Buffer Overflow in HDC Module (CVE-2026-24922)
CVE-2026-24922 6.9 - Medium - February 06, 2026

Addr Read CVE-2026-24921 in HDC Mod Compromises Avail & Conf
CVE-2026-24921 4.8 - Medium - February 06, 2026

AR CVE-2026-24918: Address Read Vulnerability in Comm Module
CVE-2026-24918 6.8 - Medium - February 06, 2026

CVE-2026-24915: OOB read in Linux kernel media subsystem
CVE-2026-24915 6.2 - Medium - February 06, 2026

Android Camera Module Type Confusion DoS Vulnerability
CVE-2026-24914 4 - Medium - February 06, 2026

CVE-2026-24926: Camera Module OOB Write (Availability Impact)
CVE-2026-24926 8.4 - High - February 06, 2026

Image Module Heap-Based Buffer Overflow (CVE-2026-24925)
CVE-2026-24925 7.3 - High - February 06, 2026

Huawei MediaLib: Permission Bypass in Media Library Module
CVE-2025-68959 6.2 - Medium - January 14, 2026

Huawei Media Library Module Permission Bypass (CVE-2025-68970)
CVE-2025-68970 6.1 - Medium - January 14, 2026

MI-M Attack on Huawei Clone Module
CVE-2025-68963 5.7 - Medium - January 14, 2026

Huawei Print Module Improper Permission Control Vulnerability
CVE-2025-68967 5.7 - Medium - January 14, 2026

Huawei Notepad Module Permission Control Flaw
CVE-2025-68966 5.1 - Medium - January 14, 2026

Huawei Notepad Permission Control Flaw Exposes Service Confidentiality
CVE-2025-68965 4.7 - Medium - January 14, 2026

Huawei HiView module: Data verification flaw causing DoS
CVE-2025-68964 6.2 - Medium - January 14, 2026

Huawei Thermal Mgmt Module Race Condition (CVE-2025-68969)
CVE-2025-68969 6.8 - Medium - January 14, 2026

Huawei Input Module Double-Free Vulnerability
CVE-2025-68968 7.8 - High - January 14, 2026

Huawei Android Camera Frmwk Thread RACE: Availability Impact
CVE-2025-68962 5.1 - Medium - January 14, 2026

Huawei Camera Framework Thread Race Condition (Availability)
CVE-2025-68961 5.1 - Medium - January 14, 2026

Huawei Video Framework RACE causes availability loss
CVE-2025-68960 8.4 - High - January 14, 2026

CVE-2025-68958: Multi-thread Race Condition in Huawei Card Framework
CVE-2025-68958 8 - High - January 14, 2026

Huawei Card Framework Multithread Race Condition
CVE-2025-68957 8.4 - High - January 14, 2026

Huawei
Vendor

Huawei Harmonyos
Product