Whitelist Mechanism Bypass in GameCenter by Honor
CVE-2025-2188

9.1CRITICAL

Key Information:

Vendor: Honor
Status: Com.hihonor.gamecenter
Vendor: CVE Published:; 17 April 2025

What is CVE-2025-2188?

A security vulnerability exists in GameCenter that allows for the bypassing of its whitelist mechanism. If successfully exploited, this vulnerability could lead to unauthorized access, compromising service confidentiality and integrity. Users are encouraged to review their system configurations and apply necessary security updates as they become available.

Affected Version(s)

com.hihonor.gamecenter 16.0.23 < 16.0.23.304

References

https://www.honor.com/global/security/cve-2025-2188/

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 17, 2025
Vulnerability Reserved
Mar 11, 2025

JSON