Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
Authentication Bypass in Device Authentication Module
CVE-2026-28536
Summary
A vulnerability in the device authentication system allows attackers to access devices without proper authorization, potentially compromising sensitive data and device integrity. This could happen if an attacker finds a way to bypass the authentication checks, putting your data and devices at risk. Update your device authentication module to the latest version to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| huawei | harmonyos | 5.1.0 | – |
| huawei | harmonyos | 6.0.0 | – |
Original title
Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
Original description
Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
nvd CVSS3.1
8.1
Vulnerability type
CWE-305
- https://consumer.huawei.com/en/support/bulletin/2026/3/ Vendor Advisory
- https://consumer.huawei.com/en/support/bulletinlaptops/2026/3/ Vendor Advisory
- https://consumer.huawei.com/en/support/bulletinvision/2026/3/ Vendor Advisory
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026