Denial of Service Vulnerability in OpenHarmony by OpenHarmony
CVE-2025-25057

3.3LOW

Key Information:

Vendor: Openharmony
Status: Openharmony
Vendor: CVE Published:; 7 April 2025

🔔 Create Openharmony Vulnerability Alert

What is CVE-2025-25057?

OpenHarmony versions prior to v5.0.2 are susceptible to a Denial of Service (DoS) vulnerability, allowing local attackers to potentially cause application disruptions. This issue arises from inadequate memory release management, which can lead to resource exhaustion and affect system stability. Users of affected versions are advised to apply patches to mitigate this risk.

Affected Version(s)

OpenHarmony v4.1.0

References

https://gitee.com/openharmony/security/blob/master/zh/sec...

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Feb 8, 2025