← Back to CVEs
CVE-2026-28553
MEDIUM6.9
Description
Vulnerability of improper permission control in the theme setting module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE Details
CVSS v3.1 Score6.9
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:L
Attack VectorLOCAL
ComplexityHIGH
Privileges RequiredNONE
User InteractionREQUIRED
Published4/13/2026
Last Modified4/14/2026
Sourcenvd
Honeypot Sightings0
Affected Products
huawei:emuihuawei:harmonyos
Weaknesses (CWE)
CWE-275
References
https://consumer.huawei.com/en/support/bulletin/2026/4/(psirt@huawei.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.