Buffer Overflow Vulnerability in Huawei Codec Module
CVE-2024-58109

4.6MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 7 April 2025

Summary

The vulnerability exists in Huawei's codec module where a buffer overflow can be exploited by an attacker. This could lead to unauthorized conditions, potentially impacting the availability of the system and its resources. Users of affected versions should take immediate action to mitigate the risks associated with this vulnerability.

Affected Version(s)

HarmonyOS 5.0.0

References

https://consumer.huawei.com/en/support/bulletin/2025/4/

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Mar 27, 2025