Permission verification vulnerability in the media library module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 18 Sep 2025 07:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200

Thu, 18 Sep 2025 07:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 18 Sep 2025 07:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-285

Mon, 17 Mar 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Huawei
Huawei harmonyos
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:huawei:harmonyos:5.0.0:*:*:*:*:*:*:*
Vendors & Products Huawei
Huawei harmonyos

Thu, 06 Feb 2025 12:45:00 +0000

Type Values Removed Values Added
Description Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
Weaknesses CWE-200
References
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: huawei

Published:

Updated: 2025-09-18T06:47:03.832Z

Reserved: 2025-01-22T03:37:52.394Z

Link: CVE-2024-57954

cve-icon Vulnrichment

Updated: 2025-02-12T19:41:38.561Z

cve-icon NVD

Status : Analyzed

Published: 2025-02-06T13:15:39.467

Modified: 2025-09-26T19:06:41.397

Link: CVE-2024-57954

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.