CVE-2026-34858

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-34858
UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.

4.1 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.5 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://consumer.huawei.com/en/support/bulletin/2026/4/ Vendor Advisory
https://consumer.huawei.com/en/support/bulletinvision/2026/4/ Vendor Advisory
https://consumer.huawei.com/en/support/bulletinwearables/2026/4/ Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.1.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:6.0.0:*:*:*:*:*:*:*
History

15 Apr 2026, 20:13

Type Values Removed Values Added
First Time Huawei harmonyos
Huawei
CPE cpe:2.3:o:huawei:harmonyos:6.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:5.1.1:*:*:*:*:*:*:*
References () https://consumer.huawei.com/en/support/bulletin/2026/4/ - () https://consumer.huawei.com/en/support/bulletin/2026/4/ - Vendor Advisory
References () https://consumer.huawei.com/en/support/bulletinvision/2026/4/ - () https://consumer.huawei.com/en/support/bulletinvision/2026/4/ - Vendor Advisory
References () https://consumer.huawei.com/en/support/bulletinwearables/2026/4/ - () https://consumer.huawei.com/en/support/bulletinwearables/2026/4/ - Vendor Advisory

13 Apr 2026, 05:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-04-13 05:16

Updated : 2026-04-15 20:13

NVD link : CVE-2026-34858

Mitre link : CVE-2026-34858

CVE.ORG link : CVE-2026-34858

JSON object : View

Products Affected

huawei

  • harmonyos
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')