CVE-2026-34853 PUBLISHED

Assigner: huawei
Reserved: 31.03.2026 Published: 13.04.2026 Updated: 13.04.2026

Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
CVSS Score: 7.7

Product Status

Vendor Huawei
Product HarmonyOS
Versions Default: unaffected
  • Version 4.3.1 is affected
  • Version 4.3.0 is affected
  • Version 4.2.0 is affected
  • Version 4.0.0 is affected
Vendor Huawei
Product EMUI
Versions Default: unaffected
  • Version 15.0.0 is affected
  • Version 14.2.0 is affected
  • Version 14.0.0 is affected

References

Problem Types

  • CWE-270 Privilege context switching error CWE