CVE-2025-54622

August 5, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-54622
Type cve
Published 2025-08-06T01:39:04.798Z
Modified 2025-08-06T01:39:04.798Z

Product Information

Vendor Huawei
Product HarmonyOS
Version 5.1.0

CVSS Information

Base Score 8.3 (HIGH)
Attack Vector CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Analysis

AI Description A binding authentication bypass vulnerability in the DeviceManager module could allow unauthorized access, potentially compromising service confidentiality.
AI Severity High
AI Vendor Huawei
AI Product HarmonyOS
AI Version 5.1.0, 5.0.1

Affected Products

  • Huawei HarmonyOS 5.1.0
  • Huawei HarmonyOS 5.0.1

Additional Information

CWE List CWE-305
Source huawei

Description

Binding authentication bypass vulnerability in the devicemanager module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.