CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2025-53169
https://notcve.org/view.php?id=CVE-2025-53169
07 Jul 2025 — Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness. Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness. • https://consumer.huawei.com/en/support/bulletin/2025/7 • CWE-287: Improper Authentication •
CVSS: 5.7EPSS: 0%CPEs: 2EXPL: 0CVE-2025-53168
https://notcve.org/view.php?id=CVE-2025-53168
07 Jul 2025 — Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness. Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness. • https://consumer.huawei.com/en/support/bulletin/2025/7 • CWE-275: Permission Issues •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 0CVE-2025-53167
https://notcve.org/view.php?id=CVE-2025-53167
07 Jul 2025 — Authentication vulnerability in the distributed collaboration framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Authentication vulnerability in the distributed collaboration framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/7 • CWE-305: Authentication Bypass by Primary Weakness •
CVSS: 9.8EPSS: 0%CPEs: 35EXPL: 0CVE-2025-5914 – Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c
https://notcve.org/view.php?id=CVE-2025-5914
09 Jun 2025 — A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition. Se ha identificado una vulnerabilidad en la librería libarchive, específicamente en la función archive_read_format_rar_seek_data... • https://access.redhat.com/security/cve/CVE-2025-5914 • CWE-415: Double Free •
CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48908
https://notcve.org/view.php?id=CVE-2025-48908
06 Jun 2025 — Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability. Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletinlaptops/2025/6 • CWE-567: Unsynchronized Access to Shared Data in a Multithreaded Context •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48911
https://notcve.org/view.php?id=CVE-2025-48911
06 Jun 2025 — Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-266: Incorrect Privilege Assignment •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-48910
https://notcve.org/view.php?id=CVE-2025-48910
06 Jun 2025 — Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability. Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48909
https://notcve.org/view.php?id=CVE-2025-48909
06 Jun 2025 — Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality. Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-287: Improper Authentication •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-58114
https://notcve.org/view.php?id=CVE-2024-58114
06 Jun 2025 — Resource allocation control failure vulnerability in the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. Resource allocation control failure vulnerability in the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48907
https://notcve.org/view.php?id=CVE-2025-48907
06 Jun 2025 — Deserialization vulnerability in the IPC module Impact: Successful exploitation of this vulnerability may affect availability. Deserialization vulnerability in the IPC module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-248: Uncaught Exception •