CVE-2025-12736

CVSS v3.1

6.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions OpenHarmony versions prior to 5.0.4

Description The software contains a flaw that allows a local attacker to potentially leak sensitive, case-sensitive information. This occurs through the use of an uninitialized resource within the multimedia audio standard component.

Recommendations Update to OpenHarmony version 5.0.4 or later.

Fix

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-908

Related Identifiers

CVE-2025-12736

Affected Products

Openharmony

CVE-2025-12736

Weakness Enumeration

Related Identifiers

Affected Products

References · 5