CVE-2026-28549Race Condition in Huawei Harmonyos

CWE-362Race Condition3 documents3 sources
Severity
4.7MEDIUMNVD
EPSS
0.0%
top 99.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Harmonyos
Timeline
PublishedMar 5

Description

Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages2 packages

CVEListV5huawei/harmonyos5.1.0, 6.0.0+1
NVDhuawei/harmonyos6.0.0

🔴Vulnerability Details

2
CVEList
CVE-2026-28549: Race condition vulnerability in the permission management service2026-03-05
GHSA
GHSA-x9cg-69jp-cr99: Race condition vulnerability in the permission management service2026-03-05
CVE-2026-28549 — Race Condition in Huawei Harmonyos | cvebase