CVE-2025-53173Stack-based Buffer Overflow in Huawei Harmonyos

CWE-121Stack-based Buffer Overflow4 documents4 sources
Severity
4.3MEDIUMNVD
CNA5.3
EPSS
0.1%
top 83.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Harmonyos
Timeline
PublishedJul 7

Description

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:LExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5huawei/harmonyos5.0.1, 5.1.0+1
NVDhuawei/harmonyos5.0.1, 5.1.0+1

🔴Vulnerability Details

2
CVEList
CVE-2025-53173: Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file previe2025-07-07
GHSA
GHSA-v75f-vfcm-gvrr: Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file previe2025-07-07

📋Vendor Advisories

1
Microsoft
NFSv4.0: Fix a use-after-free problem in the asynchronous open()2024-12-10
CVE-2025-53173 — Stack-based Buffer Overflow in Huawei | cvebase