Security Bulletins for HUAWEI Phones/Tablets, September 2025
HUAWEI is releasing monthly security updates for flagship models. This security update includes HUAWEI and third-party library patches:
This security update includes the following HUAWEI patches:
CVE | Vulnerability Description | Impact | Severity | Affected Version |
---|---|---|---|---|
CVE-2025-58276 | Permission verification vulnerability in the home screen module | Successful exploitation of this vulnerability may affect availability. | Medium | HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, HarmonyOS2.0.0, EMUI 15.0.0, EMUI 14.0.0, EMUI 13.0.0, EMUI 12.0.0 |
CVE-2025-58280 | Vulnerability of improper control and modification of object prototype properties in the runtime interpreter module | Successful exploitation of this vulnerability may affect availability. | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-58281 | Out-of-bounds read vulnerability in the runtime interpreter module | Successful exploitation of this vulnerability may affect availability. | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-58296 | Race condition vulnerability in the audio module | Successful exploitation of this vulnerability may affect function stability. | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-58313 | Race condition vulnerability in the device standby module | Successful exploitation of this vulnerability may cause feature exceptions of the device standby module. | High | HarmonyOS5.1.0, HarmonyOS5.0.1 |
This security update includes the following third-party library patches:
CVE | Severity | Affected Version |
---|---|---|
CVE-2025-22441 | High | HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, HarmonyOS2.0.0, EMUI 15.0.0, EMUI 14.0.0, EMUI 13.0.0, EMUI 12.0.0 |
CVE-2023-21342 | High | HarmonyOS4.3.1, HarmonyOS4.3.0, HarmonyOS4.2.0, HarmonyOS4.0.0, HarmonyOS3.1.0, HarmonyOS3.0.0, EMUI 15.0.0, EMUI 14.0.0, EMUI 13.0.0 |
CVE-2025-38079 | High | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2022-49728 | Medium | HarmonyOS5.0.1 |
CVE-2025-21765 | Medium | HarmonyOS5.0.1 |
CVE-2025-21922 | Medium | HarmonyOS5.0.1 |
CVE-2025-21959 | Medium | HarmonyOS5.0.1 |
CVE-2025-37836 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-37995 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38111 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38147 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38214 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38222 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38312 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38337 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38424 | Medium | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-26474 | Low | HarmonyOS5.0.1 |
CVE-2025-21910 | Low | HarmonyOS5.0.1 |
CVE-2025-22008 | Low | HarmonyOS5.0.1 |
CVE-2025-37923 | Low | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38058 | Low | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38103 | Low | HarmonyOS5.1.0, HarmonyOS5.0.1 |
CVE-2025-38346 | Low | HarmonyOS5.1.0, HarmonyOS5.0.1 |
Updated on: 2025-09-05
- en