CNNVD-202508-902 Information

CNNVD ID

CNNVD-202508-902

Related CVE

CVE-2025-27577

• CNNVD Published: 2025-08-11

Description (Chinese)

OpenHarmony是中国开放原子（OpenAtom）基金会的一种鸿蒙操作系统的开源项目。 OpenHarmony v5.0.3及之前版本存在竞争条件问题漏洞，该漏洞源于tcb中竞争条件，可能导致执行任意代码。

Description (English)

Open Harmony is an open-source project of the OpenAtom Foundation in China for a luminous operating system. Open Harmony v. 5.0.3 and previous versions had a loophole in the competition conditions, which originated in the tcb, and could lead to the enforcement of arbitrary codes.

Hazard Level

Medium

Vulnerability Type

竞争条件问题

Affected Vendor

开放原子

Published

2025-08-11

Last Modified

2026-02-24

References

https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-08.md https://access.redhat.com/security/cve/cve-2025-27577

Patch

https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-08.md