CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-25277

in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.4%

CVSS Severity

CVSS v3 Score 6.3

References

https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2025/2025-11.md

Products affected by CVE-2025-25277

Openatom » Openharmony » Version: 5.0.3

cpe:2.3:o:openatom:openharmony:5.0.3
Openatom » Openharmony » Version: 5.1.0

cpe:2.3:o:openatom:openharmony:5.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25277

Products

Pricing

Contact Us