CVE-2026-31368
Published: 21 April 2026
Summary
CVE-2026-31368 is a high-severity Improper Privilege Management (CWE-269) vulnerability in Honor (inferred from references). Its CVSS base score is 7.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 0.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-25 (Reference Monitor) and AC-3 (Access Enforcement).
Deeper analysis
CVE-2026-31368 is a privilege bypass vulnerability affecting AiAssistant, a component likely integrated into Honor devices or services. The issue allows attackers to circumvent access controls, with successful exploitation potentially impacting service availability. It has a CVSS v3.1 base score of 7.8 (High), reflecting a local attack vector (AV:L), low attack complexity (AC:L), low privileges required (PR:L), no user interaction needed (UI:N), and unchanged scope (S:U), resulting in high impacts on confidentiality (C:H), integrity (I:H), and availability (A:H).
A local attacker with low-level privileges on the affected system can exploit this vulnerability without requiring user interaction. Upon successful exploitation, the attacker could elevate privileges, leading to unauthorized access to sensitive data, modification of system resources, and disruption of AiAssistant services, thereby compromising the overall integrity and availability of the affected component.
The primary advisory reference is available at https://www.honor.com/global/security/cve-2026-31368/, published on 2026-04-21, which provides details from Honor on this vulnerability. No specific mitigation or patch information is detailed in the available data.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-24063
Vulnerability details
AiAssistant is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Local privilege bypass vulnerability allowing low-priv attackers to escalate privileges via exploitation, directly matching T1068 Exploitation for Privilege Escalation. High CIA impacts follow from successful escalation but are not independent techniques enabled by the vuln itself.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
AC-6 enforces the principle of least privilege, directly preventing low-privilege local attackers from escalating privileges via bypass in CVE-2026-31368.
AC-3 mandates enforcement of approved access authorizations, mitigating privilege bypass by ensuring logical access controls cannot be circumvented.
AC-25 requires a tamper-proof reference monitor for all access decisions, countering exploitation of privilege bypass vulnerabilities like CVE-2026-31368.