TROYANOSYVIRUS
Volver a CVEs

CVE-2026-28553

MEDIUM
6.9

Descripcion

Vulnerability of improper permission control in the theme setting module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Detalles CVE

Puntuacion CVSS v3.16.9
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:L
Vector de ataqueLOCAL
ComplejidadHIGH
Privilegios requeridosNONE
Interaccion usuarioREQUIRED
Publicado4/13/2026
Ultima modificacion4/14/2026
Fuentenvd
Avistamientos honeypot0

Productos afectados

huawei:emuihuawei:harmonyos

Debilidades (CWE)

CWE-275

Referencias

https://consumer.huawei.com/en/support/bulletin/2026/4/(psirt@huawei.com)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.