Description
Race condition vulnerability in the event notification module.
Impact: Successful exploitation of this vulnerability may affect availability.
Published: 2026-04-13
Score: 2.2 Low
EPSS: < 1% Very Low
KEV: No
Impact: Availability impact (possible denial of service)
Action: Assess Impact
AI Analysis

Impact

A race condition exists in the event notification module of Huawei HarmonyOS, allowing an attacker to manipulate event timing and potentially corrupt the notification handling. The flaw can cause services to crash or become unresponsive, resulting in a loss of availability for affected applications.

Affected Systems

Huawei HarmonyOS devices are affected. No specific version information is provided in the advisory.

Risk and Exploitability

The CVSS base score of 2.2 indicates low severity, yet the availability impact warrants attention. The exploit probability score is unavailable, and the vulnerability is not listed in the CISA known exploited vulnerabilities catalog. Based on the description, the likely attack vector involves local or privileged execution where an attacker can influence event timing to trigger the race condition. No additional exploitation conditions are detailed in the advisory.

Generated by OpenCVE AI on April 13, 2026 at 06:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check Huawei’s support portal for updates or patches addressing the event notification race condition.
  • If a patch is unavailable, monitor system logs for abnormal event notification patterns and consider temporarily disabling the affected notification feature.
  • Ensure device firmware and operating system are kept up to date with the latest vendor releases to reduce exposure.

Generated by OpenCVE AI on April 13, 2026 at 06:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 16 Apr 2026 05:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:huawei:harmonyos:5.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:6.0.0:*:*:*:*:*:*:*

Mon, 13 Apr 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 13 Apr 2026 14:30:00 +0000

Type Values Removed Values Added
Title Race Condition in HarmonyOS Event Notification Module Leading to Availability Issues

Mon, 13 Apr 2026 13:00:00 +0000

Type Values Removed Values Added
First Time appeared Huawei
Huawei harmonyos
Vendors & Products Huawei
Huawei harmonyos

Mon, 13 Apr 2026 04:00:00 +0000

Type Values Removed Values Added
Description Race condition vulnerability in the event notification module. Impact: Successful exploitation of this vulnerability may affect availability.
Weaknesses CWE-362
References
Metrics cvssV3_1

{'score': 2.2, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L'}

Subscriptions

Huawei Harmonyos
cve-icon MITRE

Status: PUBLISHED

Assigner: huawei

Published:

Updated: 2026-04-13T18:06:17.547Z

Reserved: 2026-03-31T01:11:13.700Z

Link: CVE-2026-34851

cve-icon Vulnrichment

Updated: 2026-04-13T17:57:52.439Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-13T04:16:11.513

Modified: 2026-04-16T05:01:49.813

Link: CVE-2026-34851

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-13T12:53:31Z

Weaknesses