CVE-2026-31370
Description
Honor E APP is affected by information leak vulnerability, successful exploitation of this vulnerability may affect service confidentiality.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An information leak vulnerability in Honor E APP could allow an attacker to compromise service confidentiality.
CVE-2026-31370 is an information leak vulnerability affecting the Honor E APP. The root cause is not detailed in the advisory, but the flaw allows unauthorized disclosure of information, potentially compromising service confidentiality [1].
The advisory does not specify the attack vector or prerequisites for exploitation. However, as an application-level vulnerability, it may be exploitable locally or through malicious apps installed on the device. No authentication requirements are mentioned, suggesting that an attacker with access to the device could leverage the vulnerability [1].
Successful exploitation could lead to the leakage of sensitive information, affecting the confidentiality of services provided by the Honor E APP. The CVSS v3 score of 6.3 indicates a medium severity, with the primary impact on confidentiality [1].
Honor has released a software update to address this vulnerability. Users should update the Honor E APP to version 25.02.08.01 or later, which can be obtained through the automatic update mechanism. The vulnerability was reported by researcher kky(QingYang) [1].
AI Insight generated on May 18, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.