CVE-2025-58302_CVE-2025-58302

8.4 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Permission control vulnerability in the Settings module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Basic Information

ID CVE-2025-58302

Source huawei

Published Nov 28, 2025 at 02:56

Affected Product

Vendor Huawei

Product HarmonyOS

Version 4.3.1

Affected Versions Huawei HarmonyOS 4.3.1
Huawei HarmonyOS 4.3.0
Huawei HarmonyOS 4.2.0
Huawei HarmonyOS 4.0.0
Huawei HarmonyOS 3.1.0
Huawei HarmonyOS 3.0.0
Huawei HarmonyOS 2.0.0
Huawei EMUI 15.0.0
Huawei EMUI 14.2.0
Huawei EMUI 14.0.0
Huawei EMUI 13.0.0
Huawei EMUI 12.0.0

CWE Classification

CWE-264

References

consumer.huawei.com /en/support/bulletin/2025/11/

{
    "lastseen": "",
    "description": "Permission control vulnerability in the Settings module.\nImpact: Successful exploitation of this vulnerability may affect service confidentiality.",
    "published": "2025-11-28T02:56:00.604Z",
    "modified": "2025-11-28T02:56:00.604Z",
    "type": "cve",
    "title": "CVE-2025-58302",
    "source": "huawei",
    "references": "https://consumer.huawei.com/en/support/bulletin/2025/11/",
    "id": "CVE-2025-58302",
    "bulletinFamily": "",
    "cwe": [
        "CWE-264"
    ],
    "cvelist": null,
    "sourceData": "Huawei HarmonyOS 4.3.1\nHuawei HarmonyOS 4.3.0\nHuawei HarmonyOS 4.2.0\nHuawei HarmonyOS 4.0.0\nHuawei HarmonyOS 3.1.0\nHuawei HarmonyOS 3.0.0\nHuawei HarmonyOS 2.0.0\nHuawei EMUI 15.0.0\nHuawei EMUI 14.2.0\nHuawei EMUI 14.0.0\nHuawei EMUI 13.0.0\nHuawei EMUI 12.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.4,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HarmonyOS",
    "version": "4.3.1",
    "vendor": "Huawei",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}