PatchSiren cyber security CVE debrief
CVE-2026-41975 Huawei CVE debrief
A Permission management vulnerability was discovered in the network management module. Successful exploitation of this vulnerability may affect service integrity. The vulnerability has a CVSS score of 6.3 and a severity of MEDIUM.
- Vendor
- Huawei
- Product
- HarmonyOS
- CVSS
- MEDIUM 6.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-09
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-09
Who should care
Administrators and users of the affected product should review the vendor's advisory and apply any necessary patches or mitigations.
Technical summary
The vulnerability is described as CWE-701. The CVSS vector is CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:H.
Defensive priority
MEDIUM
Recommended defensive actions
- Review and apply patches or mitigations provided by the vendor.
- Monitor the affected system for potential exploitation attempts.
Evidence notes
The vendor is identified as Huawei based on evidence from reference_domain_candidate.
Official resources
CVE-2026-41975 was published on 2026-06-09T05:16:37.893Z and modified on 2026-06-09T13:34:58.997Z.