Permission Control Vulnerability in Huawei Network Module
CVE-2025-58284

5.9MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 11 October 2025

What is CVE-2025-58284?

A permission control vulnerability has been identified in the Huawei Network Module that may allow unauthorized access, potentially compromising service confidentiality. If exploited, this vulnerability could lead to unauthorized users gaining access to sensitive data and systems, highlighting the importance of timely security measures and updates to mitigate risks associated with unauthorized permissions.

Affected Version(s)

HarmonyOS 5.1.0

HarmonyOS 5.0.1

References

https://consumer.huawei.com/en/support/bulletin/2025/10/

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 11, 2025
Vulnerability Reserved
Aug 28, 2025

JSON