CVE-2026-24931 โ€” Huawei Harmonyos vulnerability

CWE-2643 documents3 sources
Severity
5.5MEDIUMNVD
CNA5.9
EPSS
0.0%
top 99.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Harmonyos
Timeline
PublishedFeb 6

Description

Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

โ–ถCVEListV5huawei/harmonyos5.1.0, 6.0.0+1
โ–ถNVDhuawei/harmonyos5.1.0, 6.0.0+1

๐Ÿ”ดVulnerability Details

2
CVEList
CVE-2026-24931: Vulnerability of improper criterion security check in the card moduleโ†—2026-02-06
โ–ถ
GHSA
GHSA-xf7w-vq99-24wh: Vulnerability of improper criterion security check in the card moduleโ†—2026-02-06
โ–ถ
CVE-2026-24931 โ€” Huawei Harmonyos vulnerability | cvebase