PatchSiren cyber security CVE debrief
CVE-2026-41980 Huawei CVE debrief
A permission control vulnerability was discovered in the file preview module. Successful exploitation of this vulnerability may affect service confidentiality. The vulnerability has a CVSS score of 5.5 and a severity of MEDIUM.
- Vendor
- Huawei
- Product
- HarmonyOS
- CVSS
- MEDIUM 5.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-09
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-09
Who should care
Users of Huawei products
Technical summary
The vulnerability is caused by a permission control issue in the file preview module. This could allow an attacker to access sensitive information, potentially affecting service confidentiality.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates provided by the vendor to fix the vulnerability.
- Restrict access to sensitive information and monitor for suspicious activity.
Evidence notes
The CVE record was published on 2026-06-09T05:16:38.260Z and last modified on 2026-06-09T13:34:58.997Z. The vendor is listed as Unknown Vendor, but evidence suggests it may be Huawei.
Official resources
CVE-2026-41980 was published on 2026-06-09T05:16:38.260Z and was last modified on 2026-06-09T13:34:58.997Z.