anonhaven
Ad

CVE-2026-34853

HIGH CVSS 3.1: 7.7 EPSS 0.01%
Updated Apr 13, 2026
Permission
Parameter Value
CVSS 7.7 (HIGH)
Type CWE-270
Vendor Permission
Public PoC No

Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability.

Attack Parameters

Attack Vector
Local
Requires local access
Attack Complexity
Low
Easy to exploit
Privileges Required
High
Admin privileges needed
User Interaction
Required
User action required

Impact Assessment

Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-270

References 2

https://consumer.huawei.com/en/support/bulletin/2026/4/
psirt@huawei.com
https://consumer.huawei.com/en/support/bulletinvision/2026/4/
psirt@huawei.com
Share Post Share Share Share