CVE-2025-68959 | THREATINT

Description

Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

PUBLISHED Reserved 2025-12-27 | Published 2026-01-14 | Updated 2026-01-14 | Assigner huawei

MEDIUM: 6.2CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

Product status

Default status

unaffected

4.3.1

affected

4.3.0

affected

4.2.0

affected

4.0.0

affected

3.1.0

affected

3.0.0

affected

Default status

unaffected

15.0.0

affected

14.2.0

affected

14.0.0

affected

13.0.0

affected

References

consumer.huawei.com/en/support/bulletin/2026/1//

consumer.huawei.com/en/support/bulletinwearables/2026/1/

consumer.huawei.com/en/support/bulletinvision/2026/1/

cve.org (CVE-2025-68959)

nvd.nist.gov (CVE-2025-68959)

Download JSON