Double Free Vulnerability in Huawei Multi-Mode Input System
CVE-2026-34867

5.6MEDIUM

Key Information:

Vendor: Huawei
Status: Harmonyos
Vendor: CVE Published:; 13 April 2026

What is CVE-2026-34867?

A double free vulnerability exists in Huawei's multi-mode input system. This flaw may allow attackers to exploit the system, potentially impacting its availability. Proper handling and allocation of memory are crucial to prevent such vulnerabilities from being leveraged by malicious entities.

Affected Version(s)

HarmonyOS 6.0.0

HarmonyOS 5.1.0

References

https://consumer.huawei.com/en/support/bulletin/2026/4/

https://consumer.huawei.com/en/support/bulletinlaptops/20...

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 13, 2026
Vulnerability Reserved
Mar 31, 2026

CVE-2026-34867 Data

JSON