CVE-2026-34855
Out-of-Bounds Write in Kernel Module Affecting Availability, Confidentiality
Publication date: 2026-04-13
Last updated on: 2026-04-17
Assigner: Huawei Technologies
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| huawei | harmonyos | 4.0.0 |
| huawei | harmonyos | 4.2.0 |
| huawei | harmonyos | 4.3.0 |
| huawei | harmonyos | 5.1.0 |
| huawei | harmonyos | 4.3.1 |
| huawei | harmonyos | 6.0.0 |
| huawei | emui | 14.0.0 |
| huawei | emui | 15.0.0 |
| huawei | emui | 14.2.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-20 | The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an out-of-bounds write issue in the kernel module. It means that the kernel module writes data outside the boundaries of allocated memory, which can lead to unexpected behavior or system instability.
How can this vulnerability impact me? :
Successful exploitation of this vulnerability can impact the availability and confidentiality of the affected system.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability affects availability and confidentiality, which are critical components in compliance with standards such as GDPR and HIPAA.
A successful exploitation could lead to unauthorized disclosure or denial of service, potentially causing non-compliance with regulations that require protection of personal data and system availability.