CVE-2024-58045

CVE-2024-58045 is a multi-concurrency vulnerability, classified under CWE-362 (Concurrent Execution using Shared Resource with Improper Synchronization), in the media digital copyright protection module. It affects Huawei consumer products, as indicated by the vendor's support bulletin. The vulnerability was published on 2025-03-04 and carries a CVSS v3.1 base score of 8.6 (AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H), reflecting high severity due to its potential for significant impact.

An attacker with local access can exploit this vulnerability with low complexity and no required privileges, though user interaction is necessary. Successful exploitation changes scope and allows high-impact consequences across confidentiality, integrity, and availability, with the primary effect being disruption of availability in the affected module.

Huawei's security advisory, available at https://consumer.huawei.com/en/support/bulletin/2025/3/, provides details on the vulnerability, likely including recommended mitigations or patches for affected devices. Security practitioners should consult this bulletin for specific remediation steps.