CVE-2025-48909

High CVSS: 7.1

Bypass vulnerability in the device management channel
Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Vendor

Product

CWE

Yayın Tarihi

2025-06-06 07:15:26

Güncelleme

2025-07-11 14:25:52

Source Identifier

psirt@huawei.com

KEV Date Added

CWE-287 Harmonyos HIGH Huawei 2025

https://consumer.huawei.com/en/support/bulletin/2025/6/

High

CVE-2026-28542

Permission bypass vulnerability in the system service framework. Impact: Successful exploitation of this vulnerability m…

Medium

CVE-2026-28546

Buffer overflow vulnerability in the scanning module. Impact: Successful exploitation of this vulnerability may affect a…

Medium

CVE-2026-28547

Vulnerability of uninitialized pointer access in the scanning module. Impact: Successful exploitation of this vulnerabil…

High

CVE-2026-28548

Vulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability m…

Medium

CVE-2026-28549

Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability…

Medium

CVE-2026-28551

Race condition vulnerability in the device security management module. Impact: Successful exploitation of this vulnerabi…