CVE-2024-56439

High

Published: 08 January 2025

Published

08 January 2025

Modified

26 September 2025

KEV Added

—

Patch

—

CVSS Score 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

EPSS Score 0.0004 13.9th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-56439 is a high-severity Missing Encryption of Sensitive Data (CWE-311) vulnerability in Huawei Harmonyos. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 13.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and IA-2 (Identification and Authentication (Organizational Users)).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploitation for Privilege Escalation (T1068). What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

AC-3 Access Enforcement good match

prevent

Enforces approved authorizations for logical access to information and system resources, directly addressing the access control vulnerability in the identity authentication module.

IA-2 Identification and Authentication (Organizational Users) good match

prevent

Implements identification and authentication for organizational users, strengthening the flawed identity authentication module against high-privilege local exploitation.

AC-6 Least Privilege partial match

prevent

Enforces least privilege to restrict high-privilege (PR:H) accounts, limiting the scope and impact of exploitation leading to confidentiality violations.

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

attack.mitre.org →

Why these techniques?

Access control flaw in identity authentication module enables local high-privileged exploitation leading to scope change and full CIA impact, directly mapping to privilege escalation via vulnerability.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

NVD Description

Access control vulnerability in the identity authentication module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Deeper analysisAI

CVE-2024-56439, published on 2025-01-08, is an access control vulnerability (CWE-311) in the identity authentication module. It carries a CVSS v3.1 base score of 7.5 (AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H) and is associated with NVD-CWE-Other.

The vulnerability can be exploited by a local attacker with high privileges who overcomes high attack complexity, requiring no user interaction. Successful exploitation changes the scope and leads to high impacts on confidentiality, integrity, and availability, potentially affecting service confidentiality.

Mitigation details are provided in the Huawei security bulletin at https://consumer.huawei.com/en/support/bulletin/2025/1/.

Details

CWE(s): CWE-311 NVD-CWE-Other

Affected Products

huawei

harmonyos

5.0.0

CVEs Like This One

CVE-2025-68960Same product: Huawei Harmonyos

CVE-2025-68968Same product: Huawei Harmonyos

CVE-2026-24926Same product: Huawei Harmonyos

CVE-2025-68958Same product: Huawei Harmonyos

CVE-2025-68957Same product: Huawei Harmonyos

CVE-2026-24930Same product: Huawei Harmonyos

CVE-2025-68956Same product: Huawei Harmonyos

CVE-2024-56451Same product: Huawei Harmonyos

CVE-2024-57955Same product: Huawei Harmonyos

CVE-2024-58043Same product: Huawei Harmonyos

References

https://consumer.huawei.com/en/support/bulletin/2025/1/
Vendor Advisory · psirt@huawei.com