{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-25277", "assignerOrgId": "0cf5dd6e-1214-4398-a481-30441e48fafd", "state": "PUBLISHED", "assignerShortName": "OpenHarmony", "dateReserved": "2025-03-02T07:20:06.741Z", "datePublished": "2026-03-16T07:09:27.788Z", "dateUpdated": "2026-03-16T17:27:12.753Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "0cf5dd6e-1214-4398-a481-30441e48fafd", "shortName": "OpenHarmony", "dateUpdated": "2026-03-16T07:09:27.788Z"}, "title": "arkcompiler_ets_runtime has a type confusion vulnerability", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-843", "description": "CWE-843 Access of resource using incompatible type ('type confusion')", "type": "CWE"}]}], "affected": [{"vendor": "OpenHarmony", "product": "OpenHarmony", "versions": [{"status": "affected", "version": "v5.0.3", "lessThanOrEqual": "v5.1.0.x", "versionType": "custom"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios."}]}], "references": [{"url": "https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2025/2025-11.md"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "NONE", "baseSeverity": "MEDIUM", "baseScore": 6.3, "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-16T17:26:48.596383Z", "id": "CVE-2025-25277", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-16T17:27:12.753Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-25277", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-16T17:26:48.596383Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-16T17:27:05.806Z"}}], "cna": {"title": "arkcompiler_ets_runtime has a type confusion vulnerability", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.3, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "OpenHarmony", "product": "OpenHarmony", "versions": [{"status": "affected", "version": "v5.0.3", "versionType": "custom", "lessThanOrEqual": "v5.1.0.x"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2025/2025-11.md"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios.", "supportingMedia": [{"type": "text/html", "value": "in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-843", "description": "CWE-843 Access of resource using incompatible type ('type confusion')"}]}], "providerMetadata": {"orgId": "0cf5dd6e-1214-4398-a481-30441e48fafd", "shortName": "OpenHarmony", "dateUpdated": "2026-03-16T07:09:27.788Z"}}}, "cveMetadata": {"cveId": "CVE-2025-25277", "state": "PUBLISHED", "dateUpdated": "2026-03-16T17:27:12.753Z", "dateReserved": "2025-03-02T07:20:06.741Z", "assignerOrgId": "0cf5dd6e-1214-4398-a481-30441e48fafd", "datePublished": "2026-03-16T07:09:27.788Z", "assignerShortName": "OpenHarmony"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:openatom:openharmony:5.0.3:*:*:*:-:*:*:*", "matchCriteriaId": "191FD913-141A-4354-81C3-96C87D4D7CAE", "vulnerable": true}, {"criteria": "cpe:2.3:o:openatom:openharmony:5.1.0:*:*:*:-:*:*:*", "matchCriteriaId": "0BE5D50A-ABFA-476E-BAE6-41EFEAC1F486", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through using incompatible type. This vulnerability can be exploited only in restricted scenarios."}], "id": "CVE-2025-25277", "lastModified": "2026-03-17T19:56:01.257", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 5.2, "source": "scy@openharmony.io", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-16T14:17:57.090", "references": [{"source": "scy@openharmony.io", "tags": ["Vendor Advisory"], "url": "https://gitcode.com/openharmony/security/tree/master/zh/security-disclosure/2025/2025-11.md"}], "sourceIdentifier": "scy@openharmony.io", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-843"}], "source": "scy@openharmony.io", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[v5.0.3,v5.1.0.x]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "OpenHarmony", "source": "cna", "vendor": "OpenHarmony"}, "product": "openharmony", "vendor": "openharmony"}], "analysis": {"en": {"generated_at": "2026-03-17T21:42:57.053649+00:00", "value": {"mitigation_remediation": ["Verify the device\u2019s OpenHarmony version (5.0.3, 5.1.0, or earlier).", "Apply any vendor\u2011supplied patch or upgrade to a newer, non\u2011affected OpenHarmony release.", "Temporarily disable or uninstall vulnerable pre\u2011installed applications until a patch is available.", "Continuously monitor OpenHarmony security advisories for updates on this CVE."], "summary": {"action": "Patch", "impact": "Local Arbitrary Code Execution"}, "threat_synthesis": {"affected_systems": "The flaw exists in OpenHarmony 5.0.3, 5.1.0, and all earlier releases prior to 5.1.0. All devices running these versions of the operating system are affected if they contain the default pre\u2011installed apps.", "description_and_impact": "The vulnerability is a type confusion in the OpenHarmony arkcompiler ETS runtime. Vendor notes indicate that using an incompatible type allows a local attacker to execute arbitrary code within pre\u2011installed applications, leading to potential privilege escalation on the device.", "risk_and_exploitability": "The CVSS base score is 6.3, reflecting moderate severity. The EPSS score is below 1% and the issue is not listed in CISA's KEV catalog. The attack vector is strictly local, requiring access to the device and the ability to trigger the type confusion within a pre\u2011installed application, which limits exploitation to restricted scenarios."}}}}, "created": "2026-03-17T09:53:09.109991+00:00", "updated": "2026-03-24T10:45:34.488336+00:00", "vendors": ["openharmony", "openharmony$PRODUCT$openharmony"]}