Multi-thread Race Condition Vulnerability in Huawei Camera Framework Module
CVE-2025-66321

5.1MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-66321?

This vulnerability arises from a multi-thread race condition within Huawei's camera framework module. If exploited, it may result in disruptions to the normal operation and availability of the affected devices, potentially impacting end-user experiences and functionality.

Affected Version(s)

HarmonyOS 5.1.0

HarmonyOS 5.0.1

HarmonyOS 6.0.0

References

https://consumer.huawei.com/en/support/bulletin/2025/12/

CVSS V3.1

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Nov 27, 2025

JSON