CVE-2026-28549

MEDIUM EPSS 0.0%

Published Mar 5, 20263mo ago · Modified Mar 5, 20263mo ago

4.7 CVSS 3.1

Medium

Published Mar 5, 2026 3mo ago

Last Modified Mar 5, 2026 3mo ago

Description

Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability may affect availability.

Base Score

4.7

Exploitability

1.0

Impact

3.6

Vector string

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector Local

Attack Complexity High

Privileges Required Low

User Interaction None

Scope Unchanged

Confidentiality None

Integrity None

Availability High

EPSS Exploit Probability

0.0% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

CWE-362

Vendor	Product	Version	Range
huawei	harmonyos	6.0.0	any

consumer.huawei.com https://consumer.huawei.com/en/support/bulletin/2026/3/

Vendor Advisory
consumer.huawei.com https://consumer.huawei.com/en/support/bulletinlaptops/2026/3/

Vendor Advisory

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.