CVE-2025-54611_CVE-2025-54611

7.3 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Description

EXTRA_REFERRER resource read vulnerability in the Gallery module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Basic Information

ID CVE-2025-54611

Source huawei

Published Aug 6, 2025 at 01:18

Modified Aug 6, 2025 at 13:49

Affected Product

Vendor Huawei

Product HarmonyOS

Version 4.3.1

Affected Versions Huawei HarmonyOS 4.3.1
Huawei HarmonyOS 4.3.0
Huawei HarmonyOS 4.2.0
Huawei HarmonyOS 4.0.0
Huawei HarmonyOS 3.1.0
Huawei HarmonyOS 3.0.0
Huawei HarmonyOS 2.1.0
Huawei HarmonyOS 2.0.0
Huawei EMUI 15.0.0
Huawei EMUI 14.0.0
Huawei EMUI 13.0.0
Huawei EMUI 12.0.0

CWE Classification

CWE-840

References

consumer.huawei.com /en/support/bulletin/2025/8/

{
    "lastseen": "",
    "description": "EXTRA_REFERRER resource read vulnerability in the Gallery module.\nImpact: Successful exploitation of this vulnerability may affect service confidentiality.",
    "published": "2025-08-06T01:18:18.740Z",
    "modified": "2025-08-06T13:49:45.364Z",
    "type": "cve",
    "title": "CVE-2025-54611",
    "source": "huawei",
    "references": "https://consumer.huawei.com/en/support/bulletin/2025/8/",
    "id": "CVE-2025-54611",
    "bulletinFamily": "",
    "cwe": [
        "CWE-840"
    ],
    "cvelist": null,
    "sourceData": "Huawei HarmonyOS 4.3.1\nHuawei HarmonyOS 4.3.0\nHuawei HarmonyOS 4.2.0\nHuawei HarmonyOS 4.0.0\nHuawei HarmonyOS 3.1.0\nHuawei HarmonyOS 3.0.0\nHuawei HarmonyOS 2.1.0\nHuawei HarmonyOS 2.0.0\nHuawei EMUI 15.0.0\nHuawei EMUI 14.0.0\nHuawei EMUI 13.0.0\nHuawei EMUI 12.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.3,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HarmonyOS",
    "version": "4.3.1",
    "vendor": "Huawei",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}