PatchSiren cyber security CVE debrief
CVE-2026-41978 Huawei CVE debrief
CVE-2026-41978 is a medium-severity vulnerability in the clone module that may affect service confidentiality. The vulnerability has a CVSS score of 4.4 and a CVSS severity of MEDIUM. It was published on 2026-06-09T05:16:38.030Z and last modified on 2026-06-09T13:34:58.997Z.
- Vendor
- Huawei
- Product
- HarmonyOS
- CVSS
- MEDIUM 4.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-09
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-09
Who should care
This vulnerability may impact users of the affected product. Successful exploitation of this vulnerability may affect service confidentiality.
Technical summary
The vulnerability is a permission control issue in the clone module. The CVSS vector for this vulnerability is CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates provided by the vendor to address the vulnerability.
- Review and update access controls to ensure that sensitive data is not exposed.
Evidence notes
The vendor for this vulnerability is likely Huawei, based on evidence from the source item.
Official resources
-
CVE-2026-41978 CVE record
CVE.org
-
CVE-2026-41978 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-41978 was published on 2026-06-09T05:16:38.030Z and last modified on 2026-06-09T13:34:58.997Z.