Huawei Security Control Module Permission Control Vulnerability: CVE-2026-41971 May 2026

Permission control vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Vulnerability Analysis

CVE-2026-41971 can be exploited with local system access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

NONE

Availability Impact:

NONE

Weakness Type

Business Logic Errors

Weaknesses in this category identify some of the underlying problems that commonly allow attackers to manipulate the business logic of an application. Errors in business logic can be devastating to an entire application. They can be difficult to find automatically, since they typically involve legitimate use of the application's functionality. However, many business logic errors can exhibit patterns that are similar to well-understood implementation and design weaknesses.

Products Associated with CVE-2026-41971

Want to know whenever a new CVE is published for Huawei Harmonyos? stack.watch will email you.

Huawei Security Control Module Permission Control Vulnerability
CVE-2026-41971 Published on May 15, 2026

Vulnerability Analysis

Weakness Type

Business Logic Errors

Products Associated with CVE-2026-41971

Affected Versions

Huawei Security Control Module Permission Control VulnerabilityCVE-2026-41971 Published on May 15, 2026

Vulnerability Analysis

Weakness Type

Business Logic Errors

Products Associated with CVE-2026-41971

Affected Versions

Huawei Security Control Module Permission Control Vulnerability
CVE-2026-41971 Published on May 15, 2026