CVE-2025-58298

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-58298
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability.

7.3 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 4.7

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://consumer.huawei.com/en/support/bulletin/2025/10/ Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:huawei:harmonyos:5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
History

16 Oct 2025, 15:23

Type Values Removed Values Added
CPE cpe:2.3:o:huawei:harmonyos:5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
First Time Huawei
Huawei harmonyos
References () https://consumer.huawei.com/en/support/bulletin/2025/10/ - () https://consumer.huawei.com/en/support/bulletin/2025/10/ - Vendor Advisory

11 Oct 2025, 09:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-10-11 09:15

Updated : 2025-10-16 15:23

NVD link : CVE-2025-58298

Mitre link : CVE-2025-58298

CVE.ORG link : CVE-2025-58298

JSON object : View

Products Affected

huawei

  • harmonyos
CWE
CWE-121

Stack-based Buffer Overflow