Out-of-Bounds Data Read Vulnerability in Huawei's Authorization Module
CVE-2025-46591

5.5MEDIUM

Key Information:

Vendor

Huawei

Status
Vendor
CVE Published:
6 May 2025

What is CVE-2025-46591?

This vulnerability involves an out-of-bounds data read issue within Huawei's authorization module, which may allow attackers to access unauthorized information. Successful exploitation could lead to unauthorized disclosure of sensitive data, impacting the confidentiality of the affected services.

Affected Version(s)

HarmonyOS 5.0.0

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-46591 : Out-of-Bounds Data Read Vulnerability in Huawei's Authorization Module