CVE-2025-54653Path Traversal in Huawei Harmonyos

CWE-22Path Traversal3 documents3 sources
Severity
6.5MEDIUMNVD
CNA8.4
EPSS
0.0%
top 98.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Harmonyos
Timeline
PublishedAug 6

Description

Path traversal vulnerability in the virtualization file module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization file module.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 2.0 | Impact: 4.0

Affected Packages2 packages

CVEListV5huawei/harmonyos5.0.1, 5.0.2+1
NVDhuawei/harmonyos5.0.1, 5.0.2+1

🔴Vulnerability Details

2
CVEList
CVE-2025-54653: Path traversal vulnerability in the virtualization file module2025-08-06
GHSA
GHSA-vj95-8j4p-623r: Path traversal vulnerability in the virtualization file module2025-08-06
CVE-2025-54653 — Path Traversal in Huawei Harmonyos | cvebase