CVE-2025-68968
Unknown Unknown - Not Provided
Double Free Vulnerability in Multi-Mode Input Module Affecting Input Function

Publication date: 2026-01-14

Last updated on: 2026-01-14

Assigner: Huawei Technologies

Description
Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this vulnerability may affect the input function.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-14
Last Modified
2026-01-14
Generated
2026-06-16
AI Q&A
2026-01-14
EPSS Evaluated
2026-06-15
NVD
CVE-2025-68968
EUVD
EUVD-2026-2562
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
huawei harmonyos to 6.0.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a double free issue in the multi-mode input module. A double free occurs when a program attempts to free the same memory location twice, which can lead to undefined behavior, including crashes or potential exploitation by attackers.

Impact Analysis

Successful exploitation of this vulnerability may affect the input function, potentially leading to high impacts on confidentiality, integrity, and availability of the system as indicated by the CVSS score. This could result in system instability or malfunction of input-related features.

Mitigation Strategies

Apply the January 2026 Huawei security update for HarmonyOS 6.0.0 and earlier versions, which includes patches addressing vulnerabilities in the input module among others. This update targets flagship Huawei phones and tablets and fixes multiple high-impact vulnerabilities. [2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68968. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart