CVE-2026-28538 PUBLISHED

Assigner: huawei
Reserved: 28.02.2026 Published: 05.03.2026 Updated: 05.03.2026

Path traversal vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect availability.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CVSS Score: 5.9

Product Status

Vendor Huawei
Product HarmonyOS
Versions Default: unaffected
  • Version 6.0.0 is affected
  • Version 5.1.0 is affected

References

Problem Types

  • CWE-24 Path Traversal: '../filedir' CWE