Integer Overflow Vulnerability in OpenHarmony Affects Local Systems
CVE-2025-0302

5.5MEDIUM

Key Information:

Vendor: Openharmony
Status: Openharmony
Vendor: CVE Published:; 7 February 2025

🔔 Create Openharmony Vulnerability Alert

What is CVE-2025-0302?

A vulnerability in OpenHarmony versions up to v4.1.2 permits local attackers to exploit integer overflow issues, potentially leading to a Denial of Service (DoS) condition. This flaw could allow unauthorized users to disrupt system processes, causing hindrances to normal functionality and service availability.

Affected Version(s)

OpenHarmony v4.1.0 <= 4.1.2

References

https://gitee.com/openharmony/security/blob/master/zh/sec...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 7, 2025
Vulnerability Reserved
Jan 7, 2025