Incomplete Verification Issue in Huawei Communication Module
CVE-2025-54628

5.3MEDIUM

Key Information:

Vendor

Huawei
Status
Harmonyos
Emui
Vendor
CVE Published:
6 August 2025

What is CVE-2025-54628?

This vulnerability stems from insufficient verification processes in Huawei's communication module, potentially compromising the system's integrity and availability. An attacker could exploit this weakness to disrupt the communication processes, affecting operational efficiency and security. Organizations utilizing the affected versions should evaluate their systems' security posture and apply necessary mitigations.

Affected Version(s)

EMUI 15.0.0

EMUI 14.0.0

HarmonyOS 5.1.0

References

https://consumer.huawei.com/en/support/bulletin/2025/8/

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.