Authentication Bypass in Huawei Device Auth Module
CVE-2026-28536 Published on March 5, 2026
Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
Vulnerability Analysis
Weakness Type
Authentication Bypass by Primary Weakness
The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
Products Associated with CVE-2026-28536
Want to know whenever a new CVE is published for Huawei Harmonyos? stack.watch will email you.
Affected Versions
Huawei HarmonyOS:- Version 6.0.0 is affected.
- Version 5.1.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.