CVE-2025-58285

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-58285
Permission control vulnerability in the media module. Successful exploitation of this vulnerability may affect service confidentiality.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References
Link Resource
https://consumer.huawei.com/en/support/bulletin/2025/10/ Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:huawei:harmonyos:5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
History

16 Oct 2025, 15:24

Type Values Removed Values Added
First Time Huawei harmonyos
Huawei
CPE cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.0.1:*:*:*:*:*:*:*
CWE NVD-CWE-noinfo
References () https://consumer.huawei.com/en/support/bulletin/2025/10/ - () https://consumer.huawei.com/en/support/bulletin/2025/10/ - Vendor Advisory

11 Oct 2025, 04:16

Type Values Removed Values Added
New CVE
Information

Published : 2025-10-11 04:16

Updated : 2025-10-16 15:24

NVD link : CVE-2025-58285

Mitre link : CVE-2025-58285

CVE.ORG link : CVE-2025-58285

JSON object : View

Products Affected

huawei

  • harmonyos
CWE
CWE-264

Permissions, Privileges, and Access Controls

NVD-CWE-noinfo