Permission Control Vulnerability in Huawei Clone Module
CVE-2026-41978

4.4MEDIUM

Key Information:

Vendor

Huawei

Status
Vendor
CVE Published:
9 June 2026

What is CVE-2026-41978?

A vulnerability has been identified in the Huawei Clone Module, which relates to improper permission control. In this case, unauthorized access could lead to unauthorized data exposure, thereby compromising the confidentiality of services that rely on this module. It's essential for users of the Clone Module to evaluate their security configurations in light of this issue to protect sensitive data.

Affected Version(s)

HarmonyOS 6.1.0

HarmonyOS 6.0.0

References

CVSS V3.1

Score:
4.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.