Use After Free Vulnerability in Huawei Package Management Module
CVE-2026-41984

5.2MEDIUM

Key Information:

Vendor

Huawei

Status
Vendor
CVE Published:
9 June 2026

What is CVE-2026-41984?

A Use After Free vulnerability exists in Huawei's package management module. Successful exploitation of this flaw may compromise service integrity, allowing an attacker to manipulate or disrupt critical system functionalities. Organizations using affected Huawei products need to implement proper security measures to mitigate potential risks associated with this vulnerability.

Affected Version(s)

HarmonyOS 6.1.0

References

CVSS V3.1

Score:
5.2
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.