Service Integrity at Risk: Vulnerability in System Service Module
CVE-2024-54098

7.5HIGH

Key Information:

Vendor: Huawei
Status: Harmonyos; Emui
Vendor: CVE Published:; 12 December 2024

Summary

A service logic error has been identified in the Huawei System Service Module. This vulnerability could allow attackers to compromise the integrity of services within the system. Proper assessment and remediation steps are essential to ensure that the security of the system and its operations remain intact. Monitoring for irregularities in system behavior is highly recommended to address potential exploitation of this vulnerability.

Affected Version(s)

EMUI 14.0.0

EMUI 13.0.0

EMUI 12.0.0

References

https://consumer.huawei.com/en/support/bulletin/2024/12/

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 12, 2024
Vulnerability Reserved
Nov 29, 2024