More Products
Compare
Security Advisory – Code Injection Vulnerability in Phoneservice
1.Summary
Phoneservice module is affected by code injection vulnerability, successful exploitation of this vulnerability may affect service confidentiality and integrity.
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2025-1532
For products that have released software updates to fix this vulnerability, Honor will release and update the Security Advisory.
2. Software Versions and Fixes
| Product Name | Resolved Product and Version |
| com.hihonor.phoneservice | 11.0.0.276 |
3. Impact
Successful exploitation of this vulnerability may affect service confidentiality and integrity.
4.Obtaining Fixed Software
The product that supports automatic update will receive a system update prompt. You can install the update to fix the vulnerability.
5. Revision History
2025-03-11 V1.0 INITIAL
6. Acknowledgement
ZZZ
7.Honor Security Procedures
Honor adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.
To enjoy obtain Honor product vulnerability information, please visit https://www.honor.com/ie/security/
