Openatom Vulnerabilities
Comprehensive security vulnerability database for Openatom products
5
0
3
5
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-52458 | 7.8 | This vulnerability allows a local attacker to run their own code within pre-installed apps on OpenHarmony devices, potentially leading to unauthorized access or control. However, it can only be exploited in specific situations where the attacker has local access to the device. | openatomopenharmony | Theoretical | 22 days agoMar 16, 2026 |
| CVE-2025-41432 | 7.8 | This vulnerability allows a local attacker to run any code they want in pre-installed apps on OpenHarmony devices, which could lead to unauthorized actions or data access. However, the attack can only happen in specific situations where the attacker has physical access to the device. | openatomopenharmony | Exploit Available | 22 days agoMar 16, 2026 |
| CVE-2025-26474 | 3.3 | This vulnerability allows a local attacker to manipulate input data, potentially leading to incorrect information being processed by the system. However, it can only be exploited in specific, limited situations where the attacker has local access to the device. | openatomopenharmony | Exploit Available | 22 days agoMar 16, 2026 |
| CVE-2025-25277 | 7.0 | This vulnerability allows a local attacker to run their own code within pre-installed apps on OpenHarmony devices, potentially taking control of those apps. However, it can only be exploited in specific situations where the attacker has access to the device. | openatomopenharmony | Exploit Available | 22 days agoMar 16, 2026 |
| CVE-2025-12736 | 6.5 | This vulnerability allows a local attacker to access sensitive information that should not be visible, due to a flaw in how the system handles uninitialized resources. The attacker needs to have local access to the device running affected versions of OpenHarmony, specifically v5.0.3 or earlier. | openatomopenharmony | Theoretical | 22 days agoMar 16, 2026 |
About Openatom Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Openatom products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.