Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2026-41970

CVSS 6.8 · Medium EPSS 0.01% · P1

Possible ATT&CK Techniques 1AI

T1190 · Exploit Public-Facing Application

Affected Version Matrix 9

VendorProductVersion RangeStatus
HuaweiEMUI15.0.0affected
14.2.0affected
14.0.0affected
13.0.0affected
HuaweiHarmonyOS4.3.1affected
4.3.0affected
4.2.0affected
4.0.0affected
3.1.0affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-41970

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Out-of-bounds write vulnerability in the distributed file system module. Impact: Successful exploitation of this vulnerability may affect availability.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存写
Source: NVD (National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
HuaweiHarmonyOS 4.3.1 -
HuaweiEMUI 15.0.0 -

II. Public POCs for CVE-2026-41970

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-41970

登录查看更多情报信息。

Same Patch Batch · Huawei · 2026-05-15 · 12 CVEs total

CVE-2026-419648.4 HIGHWeb权限控制漏洞:影响可用性
CVE-2026-419696.2 MEDIUM投影模块权限控制漏洞(版本号待补充)
CVE-2026-419685.9 MEDIUM制造性设计模块权限漏洞(影响可用性)
CVE-2026-419675.9 MEDIUMManufacturability设计模块权限控制漏洞影响可用性
CVE-2026-419615.9 MEDIUMContacts 权限控制漏洞
CVE-2026-419605.8 MEDIUMCalls权限控制漏洞影响可用性
CVE-2026-419665.6 MEDIUM智能感知服务权限控制漏洞
CVE-2026-419655.6 MEDIUMweb 软件 UAF 漏洞影响可用性
CVE-2026-419715.5 MEDIUM安全控制模块权限控制漏洞
CVE-2026-419623.6 LOWApp管理控制权限控制漏洞
CVE-2026-419632.8 LOW媒体平台栈溢出漏洞影响可用性

IV. Related Vulnerabilities

Same product: HarmonyOS
Same vendor: Huawei
Same weakness: CWE-787

V. Comments for CVE-2026-41970

No comments yet

Leave a comment