CVE-2025-66329
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-12-08
Last updated on: 2025-12-09
Assigner: Huawei Technologies
Description
Description
Permission control vulnerability in the window management module. Impact: Successful exploitation of this vulnerability may affect availability.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| huawei | harmonyos | 6.0.0 |
| huawei | harmonyos | 5.1.0 |
| huawei | harmonyos | 5.0.1 |
| huawei | emui | 12.0.0 |
| huawei | harmonyos | 3.0.0 |
| huawei | harmonyos | 3.1.0 |
| huawei | harmonyos | 2.0.0 |
| huawei | emui | 13.0.0 |
| huawei | harmonyos | 4.0.0 |
| huawei | emui | 14.0.0 |
| huawei | harmonyos | 4.2.0 |
| huawei | harmonyos | 4.3.0 |
| huawei | emui | 15.0.0 |
| huawei | harmonyos | 4.3.1 |
| huawei | emui | 14.2.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-264 | Permissions, Privileges, and Access Controls |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a permission control issue in the window management module. It means that improper permission settings could allow unauthorized actions within this module.
How can this vulnerability impact me? :
Successful exploitation of this vulnerability may affect the availability of the system, potentially causing disruptions or denial of service.
What immediate steps should I take to mitigate this vulnerability?
Apply the latest Huawei security update released in December 2025, which addresses this and other vulnerabilities across various system modules and third-party libraries. [1]
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70