Permission Verification Vulnerability in Huawei Home Screen Module
CVE-2025-58276

6.8MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos; Emui
Vendor: CVE Published:; 5 September 2025

What is CVE-2025-58276?

A permission verification vulnerability has been identified in the home screen module of certain Huawei products. This flaw allows unauthorized processes to execute actions that should require elevated privileges. Successful exploitation may affect the availability of the device and could lead to unauthorized access to sensitive functionalities within the home screen. Users are urged to update their devices to the latest versions to mitigate potential risks.

Affected Version(s)

EMUI 15.0.0

EMUI 14.0.0

EMUI 13.0.0

References

https://consumer.huawei.com/en/support/bulletin/2025/9/

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 5, 2025
Vulnerability Reserved
Aug 28, 2025