CVE-2025-27521 PoC — Huawei HarmonyOS 安全漏洞

Source

https://github.com/alialucas7/CVE-2025-27521_PoC

Associated Vulnerability

Title:Huawei HarmonyOS 安全漏洞 (CVE-2025-27521)
Description:Huawei HarmonyOS是中国华为（Huawei）公司的一个操作系统。提供一个基于微内核的全场景分布式操作系统。 Huawei HarmonyOS 5.0.0版本存在安全漏洞，该漏洞源于权限管理不当，可能影响服务机密性。

Readme


## Proof-Of-Concept
### Usage
1. build
```bash
go build -o poc exploit.go 
```
2. move the binary to the target machine


https://github.com/user-attachments/assets/d5e3f8e7-ba05-42f8-a533-21179cd77177


## References
https://nvd.nist.gov/vuln/detail/CVE-2025-27591
https://access.redhat.com/security/cve/cve-2025-27591
https://github.com/facebookincubator/below/commit/da9382e6e3e332fd2c3195e22f34977f83f0f1f3
https://github.com/BridgerAlderson/CVE-2025-27591-PoC/tree/main

File Snapshot


 [4.0K]  /data/pocs/57a05dc10bd978ccd5f64186474c1f8278158994
├── [3.5K]  exploit.go
└── [ 476]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!