Stack Overflow Vulnerability in Huawei File Preview Function
CVE-2025-53174

4MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 7 July 2025

What is CVE-2025-53174?

A stack overflow vulnerability exists in the file preview function of Huawei products when handling vector images. This issue arises during the parsing of these images, posing a risk that could lead to unintended consequences during file preview operations. Users are advised to review and update their software to mitigate potential exploitation risks.

Affected Version(s)

HarmonyOS 5.1.0

HarmonyOS 5.0.1

References

https://consumer.huawei.com/en/support/bulletin/2025/7/

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 7, 2025
Vulnerability Reserved
Jun 27, 2025