CVE-2025-54644

August 5, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-54644
Type cve
Published 2025-08-06T02:47:07.843Z
Modified 2025-08-06T02:47:07.843Z

Product Information

Vendor Huawei
Product HarmonyOS
Version 4.0.0

CVSS Information

Base Score 6.6 (MEDIUM)
Attack Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

AI Analysis

AI Description An out-of-bounds array access vulnerability in the kernel ambient light module due to insufficient data verification. This could impact service confidentiality if exploited.
AI Severity Medium
AI Vendor Huawei
AI Product HarmonyOS
AI Version HarmonyOS 4.0.0, HarmonyOS 3.1.0, HarmonyOS 3.0.0, EMUI 14.0.0, EMUI 13.0.0

Affected Products

  • Huawei HarmonyOS 4.0.0
  • Huawei HarmonyOS 3.1.0
  • Huawei HarmonyOS 3.0.0
  • Huawei EMUI 14.0.0
  • Huawei EMUI 13.0.0

Additional Information

CWE List CWE-125
Source huawei

Description

Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.