Denial of Service Vulnerability in Huawei Office Service
CVE-2025-66331

3.3LOW

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-66331?

A denial of service (DoS) vulnerability exists in Huawei's Office Service, which may allow an attacker to disrupt the availability of the service. If successfully exploited, this vulnerability can lead to service outages, affecting users' access and functionality of the Office Service. Organizations utilizing this platform should take immediate steps to assess their systems and apply necessary mitigations to prevent potential exploitation.

Affected Version(s)

HarmonyOS 5.1.0

HarmonyOS 5.0.1

HarmonyOS 6.0.0

References

https://consumer.huawei.com/en/support/bulletin/2025/12/

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Nov 27, 2025

JSON