CVE-2025-1532 HIGH

CVE-2025-1532: Code Injection Vulnerability in Phoneservice

Vendor Honor
Product com.hihonor.phoneservice
Published April 17, 2025
Last update April 17, 2025

CVSS base score

8.1/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

What the vulnerability does

01Description

Phoneservice module is affected by code injection vulnerability, successful exploitation of this vulnerability may affect service confidentiality and integrity.

Key dates

02Disclosure timeline

April 17, 2025 CVE published
April 17, 2025 Record updated