CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48908
https://notcve.org/view.php?id=CVE-2025-48908
06 Jun 2025 — Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability. Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletinlaptops/2025/6 • CWE-567: Unsynchronized Access to Shared Data in a Multithreaded Context •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48911
https://notcve.org/view.php?id=CVE-2025-48911
06 Jun 2025 — Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-266: Incorrect Privilege Assignment •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-48910
https://notcve.org/view.php?id=CVE-2025-48910
06 Jun 2025 — Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability. Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48909
https://notcve.org/view.php?id=CVE-2025-48909
06 Jun 2025 — Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality. Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-287: Improper Authentication •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-58114
https://notcve.org/view.php?id=CVE-2024-58114
06 Jun 2025 — Resource allocation control failure vulnerability in the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. Resource allocation control failure vulnerability in the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48907
https://notcve.org/view.php?id=CVE-2025-48907
06 Jun 2025 — Deserialization vulnerability in the IPC module Impact: Successful exploitation of this vulnerability may affect availability. Deserialization vulnerability in the IPC module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-248: Uncaught Exception •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48906
https://notcve.org/view.php?id=CVE-2025-48906
06 Jun 2025 — Authentication bypass vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect availability. Authentication bypass vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48905
https://notcve.org/view.php?id=CVE-2025-48905
06 Jun 2025 — Wasm exception capture vulnerability in the arkweb v8 module Impact: Successful exploitation of this vulnerability may cause the failure to capture specific Wasm exception types. Wasm exception capture vulnerability in the arkweb v8 module Impact: Successful exploitation of this vulnerability may cause the failure to capture specific Wasm exception types. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-1068: Inconsistency Between Implementation and Documented Design •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48904
https://notcve.org/view.php?id=CVE-2025-48904
06 Jun 2025 — Vulnerability that cards can call unauthorized APIs in the FRS process Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability that cards can call unauthorized APIs in the FRS process Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-288: Authentication Bypass Using an Alternate Path or Channel •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48903
https://notcve.org/view.php?id=CVE-2025-48903
06 Jun 2025 — Permission bypass vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect availability. Permission bypass vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-264: Permissions, Privileges, and Access Controls •