These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A logic bypass vulnerability was discovered in the file system, which could potentially impact availability if exploited. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 2.4, indicating a low severity.
CVE-2026-41985 is a Use-After-Free (UAF) vulnerability in the package management module. Successful exploitation of this vulnerability may affect service integrity. The vulnerability has a CVSS score of 5.1, indicating a MEDIUM severity level. The CVSS vector is CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:H/A:L.
CVE-2026-41984 is a Use-After-Free (UAF) vulnerability in the package management module. Successful exploitation of this vulnerability may affect service integrity. The vulnerability has a CVSS score of 5.2 and is classified as MEDIUM severity.
A Denial of Service (DoS) vulnerability was discovered in the browser kernel. This vulnerability has been assigned a CVSS score of 4.3, indicating a MEDIUM severity level. The successful exploitation of this vulnerability may affect the availability of the system.
CVE-2026-41982 is a race condition vulnerability in the IPC module. The vulnerability has a CVSS score of 6.4 and a severity of MEDIUM. According to the CVE description, successful exploitation of this vulnerability may affect availability. The CVE was published on 2026-06-09T08:16:28.167Z and last modified on 2026-06-09T13:34:58.997Z. The vendor is currently listed as Unknown Vendor, but there is evidenc [truncated]
CVE-2026-41981 is an out-of-bounds write vulnerability in the IPC module. The CVSS score for this vulnerability is 5.3, and the severity is MEDIUM. The vulnerability was published on 2026-06-09T08:16:28.050Z and modified on 2026-06-09T13:34:58.997Z. The vendor is currently listed as Unknown Vendor, but evidence suggests it may be Huawei. The vulnerability has been referenced in two source references from [truncated]
CVE-2026-41977 is a Denial of Service (DoS) vulnerability in the log service. The vulnerability has a CVSS score of 5 and a severity of MEDIUM. According to the CVE record [cve-org], the vulnerability was published on 2026-06-09T08:16:27.927Z and last modified on 2026-06-09T13:34:58.997Z. The vendor is listed as Unknown Vendor [nvd], with potential evidence pointing to Huawei [source-item]. The vulnerabil [truncated]
A Permission control vulnerability in the audio framework (CVE-2026-41976) was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-41976). The vulnerability has a CVSS score of 6.6 and is classified as MEDIUM severity. According to the CVE description, successful exploitation of this vulnerability may affect service confidentiality. The vulnerability was [cvePublishedAt](https://nvd.ni [truncated]
CVE-2026-41974 is a low-severity vulnerability (CVSS Score: 3.6) affecting an unknown vendor's product, potentially impacting availability through a permission control issue in service notifications. The CVE was published on 2026-06-09T08:16:27.700Z and last modified on 2026-06-09T13:34:58.997Z. The vendor is currently listed as 'Unknown Vendor' but evidence suggests a potential link to Huawei. Official r [truncated]
CVE-2026-41973 is a permission control vulnerability in calls with a CVSS score of 5.9 and a severity of MEDIUM. The vulnerability was published on 2026-06-09T08:16:27.580Z and last modified on 2026-06-09T13:34:58.997Z. The impact of successful exploitation is limited to availability. The vendor is currently listed as Unknown Vendor, but evidence suggests a potential link to Huawei [resourceLinkAnnotations:ref-4].
A path traversal vulnerability was discovered in the SMS app, which could allow an attacker to affect availability. The vulnerability has a CVSS score of 5.4 and is classified as MEDIUM severity. It was published on 2026-06-09T08:16:27.457Z and last modified on 2026-06-09T13:34:58.997Z.
A permission control vulnerability was discovered in the file preview module. Successful exploitation of this vulnerability may affect service confidentiality. The vulnerability has a CVSS score of 5.5 and a severity of MEDIUM.
A permission control vulnerability was discovered in the print module. Successful exploitation of this vulnerability may affect integrity and confidentiality. The CVSS score for this vulnerability is 5.5, with a severity rating of MEDIUM.
CVE-2026-41978 is a medium-severity vulnerability in the clone module that may affect service confidentiality. The vulnerability has a CVSS score of 4.4 and a CVSS severity of MEDIUM. It was published on 2026-06-09T05:16:38.030Z and last modified on 2026-06-09T13:34:58.997Z.
A Permission management vulnerability was discovered in the network management module. Successful exploitation of this vulnerability may affect service integrity. The vulnerability has a CVSS score of 6.3 and a severity of MEDIUM.
CVE-2016-5822 is a denial-of-service vulnerability affecting Huawei OceanStor 5800 systems. According to the CVE description and NVD data, a remote attacker can send a large number of crafted HTTP packets to trigger CPU consumption and cause service disruption. The issue was publicly disclosed on 2017-01-27; NVD later marked the record as modified on 2026-05-13.