Huawei kernel module UAF vulnerability: CVE-2026-34854 April 2026

Huawei kernel module UAF vulnerability
CVE-2026-34854 Published on April 13, 2026

UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

Vulnerability Analysis

CVE-2026-34854 is exploitable with local system access, and requires user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity, and a high impact on availability.

Attack Vector:

LOCAL

Attack Complexity:

HIGH

Privileges Required:

HIGH

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2026-34854 has been classified to as a Dangling pointer vulnerability or weakness.

Products Associated with CVE-2026-34854

stack.watch emails you whenever new vulnerabilities are published in Huawei Harmonyos or Huawei Emui. Just hit a watch button to start following.

Affected Versions

Version 6.0.0 is affected.

Version 5.1.0 is affected.

Version 4.3.1 is affected.

Version 4.3.0 is affected.

Version 4.2.0 is affected.

Version 4.0.0 is affected.

Version 15.0.0 is affected.

Version 14.2.0 is affected.

Version 14.0.0 is affected.

Huawei kernel module UAF vulnerabilityCVE-2026-34854 Published on April 13, 2026

Vulnerability Analysis

Weakness Type

What is a Dangling pointer Vulnerability?

Products Associated with CVE-2026-34854

Affected Versions

Huawei kernel module UAF vulnerability
CVE-2026-34854 Published on April 13, 2026