Vulnerability Details CVE-2025-0304
in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.3%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2025-0304
-
cpe:2.3:o:openatom:openharmony:4.1.0
-
cpe:2.3:o:openatom:openharmony:4.1.1
-
cpe:2.3:o:openatom:openharmony:4.1.2