CVE-2026-58554
MEDIUM
6.6
CVSS 3.1
Description
Permission control vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
Metadata
Severity & Metrics
6.6
MEDIUM CVSS 3.1
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
SSVC — CISA Coordinator
Affected products (2)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| Huawei | EMUI | — | 15.0.0, 14.2.0, 14.0.0 |
| Huawei | HarmonyOS | — | 4.3.1, 4.3.0, 4.2.0, 4.0.0 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-200 | cna | CWE-200 Exposure of Sensitive Information to an Unauthorized Actor |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 6.6 | MEDIUM | 3.1 | cna | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L |
References (1)