CVE-2026-28551

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-28551
Race condition vulnerability in the device security management module. Impact: Successful exploitation of this vulnerability may affect availability.

4.7 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.5 / Impact : 4.2

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://consumer.huawei.com/en/support/bulletin/2026/3/ Vendor Advisory
https://consumer.huawei.com/en/support/bulletinlaptops/2026/3/ Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:6.0.0:*:*:*:*:*:*:*
History

05 Mar 2026, 21:43

Type Values Removed Values Added
References () https://consumer.huawei.com/en/support/bulletin/2026/3/ - () https://consumer.huawei.com/en/support/bulletin/2026/3/ - Vendor Advisory
References () https://consumer.huawei.com/en/support/bulletinlaptops/2026/3/ - () https://consumer.huawei.com/en/support/bulletinlaptops/2026/3/ - Vendor Advisory
CPE cpe:2.3:o:huawei:harmonyos:6.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
First Time Huawei harmonyos
Huawei

05 Mar 2026, 09:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-03-05 09:16

Updated : 2026-03-05 21:43

NVD link : CVE-2026-28551

Mitre link : CVE-2026-28551

CVE.ORG link : CVE-2026-28551

JSON object : View

Products Affected

huawei

  • harmonyos
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')