CVE-2026-28540 PUBLISHED

Assigner: huawei
Reserved: 28.02.2026 Published: 05.03.2026 Updated: 05.03.2026

Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS Score: 4

Product Status

Vendor Huawei
Product HarmonyOS
Versions Default: unaffected
  • Version 6.0.0 is affected
  • Version 5.1.0 is affected

References

Problem Types

  • CWE-158 Improper Neutralization of Null Byte or NUL Character CWE