Information Leak in OpenHarmony Versions Prior to 5.0.3
CVE-2025-27247
5.5MEDIUM
What is CVE-2025-27247?
OpenHarmony versions prior to 5.0.3 are susceptible to an information leak vulnerability. A local attacker can exploit this flaw to gain unauthorized access to sensitive information by invoking permission queries. The issue stems from inadequate handling of permissions, which may inadvertently expose critical data. Organizations using affected versions should prioritize updates to mitigate risks associated with potential data breaches.
Affected Version(s)
OpenHarmony v5.0.1