CVE-2026-34850

LOW

HarmonyOS 5.1.0 and 6.0.0 - Denial of Service via Notification Service Race Condition

Title source: llm

Race condition vulnerability in the notification service. Impact: Successful exploitation of this vulnerability may affect availability.

Core 2

Core References

CVSS v3 1.9

EPSS 0.0016

EPSS Percentile 5.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-362

Status published

Products (4)

huawei/harmonyos 5.1.0

huawei/harmonyos 6.0.0

Huawei/HarmonyOS 5.1.0

Huawei/HarmonyOS 6.0.0

Published Apr 13, 2026

Tracked Since Apr 13, 2026