CVE-2025-20102

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Apr 7, 2025

CWE ID 125

Summary

CVE-2025-20102 is a denial-of-service vulnerability affecting OpenHarmony v5.0.2 and earlier versions. An attacker can exploit this issue by performing an out-of-bounds read, leading to unintended memory access and system instability. The vulnerability allows a local attacker to cause the system to crash or become unresponsive, potentially causing significant disruption to applications and services running on the affected OpenHarmony system. It is essential that users update to the latest version of OpenHarmony to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Open Harmony

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2nuwNc
https://www.cve.org/CVERecord?id=CVE-2025-20102
https://nvd.nist.gov/vuln/detail/CVE-2025-20102

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2025-20102

CVSS 3.1 Score 3.3 of 10 (low)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations