Permission Verification Bypass in Huawei Camera App
CVE-2025-58277

4MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 11 October 2025

What is CVE-2025-58277?

A vulnerability has been identified in the Camera app by Huawei that allows for bypassing permission verification checks. This lapse could lead to unauthorized access, potentially compromising the confidentiality of services utilized through the app. Users are recommended to apply the latest security updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

HarmonyOS 5.1.0

HarmonyOS 5.0.1

References

https://consumer.huawei.com/en/support/bulletin/2025/10/

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 11, 2025
Vulnerability Reserved
Aug 28, 2025

JSON