Wasm Exception Capture Vulnerability in Arkweb V8 Module by Huawei
CVE-2025-48905

8.1HIGH

Key Information:

Vendor

Huawei

Status
Vendor
CVE Published:
6 June 2025

What is CVE-2025-48905?

The vulnerability in the Arkweb V8 module relates to the failure to capture specific WebAssembly (Wasm) exception types, which could lead to operational disruptions and impact the overall reliability of applications depending on this module. Exploiting this issue may allow attackers to manipulate exceptions in a way that could bypass standard protection mechanisms, potentially allowing for unauthorized actions or system instability.

Affected Version(s)

HarmonyOS 5.0.0

References

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-48905 : Wasm Exception Capture Vulnerability in Arkweb V8 Module by Huawei