CVE-2025-68959_CVE-2025-68959

6.2 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Description

Permission verification bypass vulnerability in the media library module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Basic Information

ID CVE-2025-68959

Source huawei

Published Jan 14, 2026 at 02:38

Affected Product

Vendor Huawei

Product HarmonyOS

Version 4.3.1

Affected Versions Huawei HarmonyOS 4.3.1
Huawei HarmonyOS 4.3.0
Huawei HarmonyOS 4.2.0
Huawei HarmonyOS 4.0.0
Huawei HarmonyOS 3.1.0
Huawei HarmonyOS 3.0.0
Huawei EMUI 15.0.0
Huawei EMUI 14.2.0
Huawei EMUI 14.0.0
Huawei EMUI 13.0.0

CWE Classification

CWE-200

References

{
    "lastseen": "",
    "description": "Permission verification bypass vulnerability in the media library module.\nImpact: Successful exploitation of this vulnerability may affect service confidentiality.",
    "published": "2026-01-14T02:38:54.819Z",
    "modified": "2026-01-14T02:38:54.819Z",
    "type": "cve",
    "title": "CVE-2025-68959",
    "source": "huawei",
    "references": "https://consumer.huawei.com/en/support/bulletin/2026/1//\nhttps://consumer.huawei.com/en/support/bulletinwearables/2026/1/\nhttps://consumer.huawei.com/en/support/bulletinvision/2026/1/",
    "id": "CVE-2025-68959",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "Huawei HarmonyOS 4.3.1\nHuawei HarmonyOS 4.3.0\nHuawei HarmonyOS 4.2.0\nHuawei HarmonyOS 4.0.0\nHuawei HarmonyOS 3.1.0\nHuawei HarmonyOS 3.0.0\nHuawei EMUI 15.0.0\nHuawei EMUI 14.2.0\nHuawei EMUI 14.0.0\nHuawei EMUI 13.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.2,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HarmonyOS",
    "version": "4.3.1",
    "vendor": "Huawei",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}