CVE-2026-41984 PUBLISHED

Assigner: huawei
Reserved: 23.04.2026 Published: 09.06.2026 Updated: 09.06.2026

UAF vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service integrity.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H
CVSS Score: 5.2

Product Status

Vendor Huawei
Product HarmonyOS
Versions Default: unaffected
  • Version 6.1.0 is affected

References

Problem Types

  • CWE-284 Improper Access Control CWE