Authentication Issue in Distributed Collaboration Framework by Huawei
CVE-2025-53167

6.9MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 7 July 2025

What is CVE-2025-53167?

An authentication vulnerability has been identified in the distributed collaboration framework module offered by Huawei. Exploitation of this flaw could lead to unauthorized access, potentially compromising the confidentiality of services. Users leveraging this product should remain vigilant and consider reviewing available security patches or updates to safeguard against exploitation.

Affected Version(s)

HarmonyOS 5.1.0

HarmonyOS 5.0.1

References

https://consumer.huawei.com/en/support/bulletin/2025/7/

CVSS V3.1

Score:

6.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 7, 2025
Vulnerability Reserved
Jun 27, 2025