Memory Write Permission Bypass in Huawei Kernel Futex Module
CVE-2025-31173

6.5MEDIUM

Key Information:

Vendor

Huawei

Status
Vendor
CVE Published:
7 April 2025

What is CVE-2025-31173?

This vulnerability allows for a memory write permission bypass in the kernel futex module, potentially compromising service confidentiality. If exploited, it may lead to unauthorized access and manipulation of sensitive data, highlighting the importance of robust security measures and timely updates to affected systems.

Affected Version(s)

HarmonyOS 5.0.0

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-31173 : Memory Write Permission Bypass in Huawei Kernel Futex Module