Race Condition Vulnerability in Huawei Kernel Hufs Module
CVE-2025-54651

4.8MEDIUM

Key Information:

Vendor

Huawei
Status
Harmonyos
Vendor
CVE Published:
6 August 2025

What is CVE-2025-54651?

The race condition vulnerability in Huawei's kernel hufs module presents a significant risk to service confidentiality. When this condition occurs, it may allow unauthorized access or alteration of data in a manner that could be exploited by malicious actors. Organizations utilizing affected versions should assess their systems and apply necessary mitigations promptly to safeguard their sensitive information.

Affected Version(s)

HarmonyOS 5.1.0

HarmonyOS 5.0.1

References

https://consumer.huawei.com/en/support/bulletin/2025/8/

CVSS V3.1

Score:
4.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.