Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
3.3
Bluetooth Service Confidentiality Exposure
CVE-2026-28540
Summary
The Bluetooth service on some devices may leak sensitive information. This could happen if an attacker finds a way to exploit a weakness in the Bluetooth software. To protect your device, keep your Bluetooth software and operating system up to date.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| huawei | harmonyos | 5.1.0 | – |
| huawei | harmonyos | 6.0.0 | – |
Original title
Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
Original description
Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
nvd CVSS3.1
3.3
Vulnerability type
CWE-158
CWE-125
Out-of-bounds Read
- https://consumer.huawei.com/en/support/bulletin/2026/3/ Vendor Advisory
- https://consumer.huawei.com/en/support/bulletinlaptops/2026/3/ Vendor Advisory
- https://consumer.huawei.com/en/support/bulletinvision/2026/3/ Vendor Advisory
- https://consumer.huawei.com/en/support/bulletinwearables/2026/3/ Vendor Advisory
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026