CVE-2025-66319
LOWSeverity by source
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Lifecycle Timeline
2DescriptionCVE.org
Permission control vulnerability in the resource scheduling module. Impact: Successful exploitation of this vulnerability may affect service integrity.
AnalysisAI
Harmonyos versions up to 5.1.0 is affected by permissions, privileges, and access controls (CVSS 3.3).
Technical ContextAI
This vulnerability (CWE-264: Permissions, Privileges, and Access Controls) exists in the resource scheduling component. Permission control vulnerability in the resource scheduling module. Impact: Successful exploitation of this vulnerability may affect service integrity.
RemediationAI
Monitor vendor advisories for a patch.
Same technique Privilege Escalation
View allShare
External POC / Exploit Code
Leaving vuln.today