CVE-2026-24925 — Heap-based Buffer Overflow in Huawei Harmonyos

Severity

5.5MEDIUMNVD

CNA7.3

EPSS

0.0%

top 99.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedFeb 6

Description

Heap-based buffer overflow vulnerability in the image module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

▶CVEListV5huawei/harmonyos5.1.0, 6.0.0+1

▶NVDhuawei/harmonyos5.1.0, 6.0.0+1

GHSA

GHSA-pqvv-87xc-vpw4: Heap-based buffer overflow vulnerability in the image module↗2026-02-06

▶

CVEList

CVE-2026-24925: Heap-based buffer overflow vulnerability in the image module↗2026-02-06

▶