Permission Control Vulnerability in Huawei Memory Management Module
CVE-2025-64314

9.3CRITICAL

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 28 November 2025

What is CVE-2025-64314?

A permission control vulnerability has been identified in the memory management module of Huawei devices. This flaw can be exploited to compromise the confidentiality of sensitive information stored within affected systems. Cyber attackers may leverage this weakness to gain unauthorized access, potentially leading to data breaches that affect users' privacy and security. It is crucial for users of Huawei laptops to apply any recommended updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

HarmonyOS 5.1.0

References

https://consumer.huawei.com/cn/support/bulletinlaptops/20...

CVSS V3.1

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 28, 2025
Vulnerability Reserved
Oct 30, 2025

JSON