CVE-2026-28553

CWE-2753 documents3 sources
Severity
6.9MEDIUM
EPSS
0.0%
top 99.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Harmonyos
Timeline
PublishedApr 13

Description

Vulnerability of improper permission control in the theme setting module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:LExploitability: 1.0 | Impact: 5.3

Affected Packages2 packages

CVEListV5huawei/emui14.0.0, 14.2.0, 15.0.0+2
CVEListV5huawei/harmonyos4 versions+3

🔴Vulnerability Details

2
CVEList
CVE-2026-28553: Vulnerability of improper permission control in the theme setting module2026-04-13
GHSA
GHSA-jhcp-32c6-rmhm: Vulnerability of improper permission control in the theme setting module2026-04-13
CVE-2026-28553 (MEDIUM CVSS 6.9) | Vulnerability of improper permissio | cvebase.io