Buffer Overflow Vulnerability in Huawei Codec Module
CVE-2024-58107

7.5HIGH

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 7 April 2025

What is CVE-2024-58107?

A buffer overflow vulnerability exists in the codec module of Huawei products, which may allow an attacker to exploit the system. Successful exploitation could lead to unforeseen disruptions in availability, potentially affecting the overall performance and reliability of services relying on this module. It is crucial for users of Huawei products to apply necessary updates and patches to mitigate any associated risks.

Affected Version(s)

HarmonyOS 5.0.0

References

https://consumer.huawei.com/en/support/bulletin/2025/4/

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Mar 27, 2025