CVE-2026-41970 PUBLISHED

Assigner: huawei
Reserved: 23.04.2026 Published: 15.05.2026 Updated: 15.05.2026

Out-of-bounds write vulnerability in the distributed file system module. Impact: Successful exploitation of this vulnerability may affect availability.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
CVSS Score: 6.8

Attack Vector	Adjacent Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	Low
Privileges Required	Low	Integrity Impact	Low
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	Huawei
Product	HarmonyOS
Versions	Default: unaffected Version 4.3.1 is affected Version 4.3.0 is affected Version 4.2.0 is affected Version 4.0.0 is affected Version 3.1.0 is affected

Vendor	Huawei
Product	EMUI
Versions	Default: unaffected Version 15.0.0 is affected Version 14.2.0 is affected Version 14.0.0 is affected Version 13.0.0 is affected

References

https://consumer.huawei.com/en/support/bulletin/2026/5/
https://consumer.huawei.com/en/support/bulletinwearables/2026/5/

Problem Types

CWE-787 Out-of-bounds write CWE