Improper Permission Assignment in Note Sharing Module of Huawei Products
CVE-2025-48911

8.2HIGH

Key Information:

Vendor

Huawei

Status
Vendor
CVE Published:
6 June 2025

What is CVE-2025-48911?

This vulnerability involves an improper permission assignment in the note sharing module of Huawei products. If exploited, it can lead to unauthorized access and potential impact on system availability, allowing attackers to manipulate functionalities that could disrupt regular operations. Organizations using affected Huawei products should implement necessary security measures to mitigate risks associated with this flaw.

Affected Version(s)

HarmonyOS 5.0.0

References

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-48911 : Improper Permission Assignment in Note Sharing Module of Huawei Products