CVE-2025-2197 - Vulnerability Details - OpenCVE

Browser is affected by type confusion vulnerability, successful exploitation of this vulnerability may affect service availability.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00068.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Honor Subscribe	Baidu Subscribe

Configuration 1 [-]

cpe:2.3:a:honor:baidu:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2025-11510	Browser is affected by type confusion vulnerability, successful exploitation of this vulnerability may affect service availability.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.honor.com/global/security/cve-2025-2197/

History

Sat, 12 Jul 2025 22:45:00 +0900

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.00045}`	epss `{'score': 0.00048}`

Fri, 11 Jul 2025 22:15:00 +0900

Type	Values Removed	Values Added
First Time appeared		Honor Honor baidu
CPEs		cpe:2.3:a:honor:baidu::::::::
Vendors & Products		Honor Honor baidu

Fri, 18 Apr 2025 03:15:00 +0900

Type	Values Removed	Values Added
Weaknesses		CWE-843

Fri, 18 Apr 2025 01:15:00 +0900

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 17 Apr 2025 18:45:00 +0900

Type	Values Removed	Values Added
Description		Browser is affected by type confusion vulnerability, successful exploitation of this vulnerability may affect service availability.
Title		Type Confusion Vulnerability in Browser
References		https://www.honor.com/global/security/cve-2025-2197/
Metrics		cvssV3_1 `{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Honor

Published: 2025-04-17T09:25:46.870Z

Updated: 2025-04-17T18:06:20.666Z

Reserved: 2025-03-11T08:01:10.174Z

Link: CVE-2025-2197

Vulnrichment

Updated: 2025-04-17T16:01:40.820Z

NVD

Status : Analyzed

Published: 2025-04-17T10:15:15.810

Modified: 2025-07-11T13:08:50.413

Link: CVE-2025-2197

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-843

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-2197", "assignerOrgId": "3836d913-7555-4dd0-a509-f5667fdf5fe4", "state": "PUBLISHED", "assignerShortName": "Honor", "dateReserved": "2025-03-11T08:01:10.174Z", "datePublished": "2025-04-17T09:25:46.870Z", "dateUpdated": "2025-04-17T18:06:20.666Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "packageName": "com. hihonor.baidu.browser", "product": "com. hihonor.baidu.browser", "vendor": "Honor", "versions": [{"lessThan": "8.1.1.3", "status": "affected", "version": "8.1.0.6", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<div>Browser is affected by type confusion vulnerability, successful exploitation of this vulnerability may affect service availability.</div>"}], "value": "Browser is affected by type confusion vulnerability, successful exploitation of this vulnerability may affect service availability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "providerMetadata": {"orgId": "3836d913-7555-4dd0-a509-f5667fdf5fe4", "shortName": "Honor", "dateUpdated": "2025-04-17T09:25:46.870Z"}, "references": [{"url": "https://www.honor.com/global/security/cve-2025-2197/"}], "source": {"discovery": "UNKNOWN"}, "title": "Type Confusion Vulnerability in Browser", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-843", "lang": "en", "description": "CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-04-17T16:01:34.755784Z", "id": "CVE-2025-2197", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-17T18:06:20.666Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-2197", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-04-17T16:01:34.755784Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-843", "description": "CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-17T16:01:40.820Z"}}], "cna": {"title": "Type Confusion Vulnerability in Browser", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Honor", "product": "com. hihonor.baidu.browser", "versions": [{"status": "affected", "version": "8.1.0.6", "lessThan": "8.1.1.3", "versionType": "custom"}], "packageName": "com. hihonor.baidu.browser", "defaultStatus": "unaffected"}], "references": [{"url": "https://www.honor.com/global/security/cve-2025-2197/"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Browser is affected by type confusion vulnerability, successful exploitation of this vulnerability may affect service availability.", "supportingMedia": [{"type": "text/html", "value": "<div>Browser is affected by type confusion vulnerability, successful exploitation of this vulnerability may affect service availability.</div>", "base64": false}]}], "providerMetadata": {"orgId": "3836d913-7555-4dd0-a509-f5667fdf5fe4", "shortName": "Honor", "dateUpdated": "2025-04-17T09:25:46.870Z"}}}, "cveMetadata": {"cveId": "CVE-2025-2197", "state": "PUBLISHED", "dateUpdated": "2025-04-17T18:06:20.666Z", "dateReserved": "2025-03-11T08:01:10.174Z", "assignerOrgId": "3836d913-7555-4dd0-a509-f5667fdf5fe4", "datePublished": "2025-04-17T09:25:46.870Z", "assignerShortName": "Honor"}, "dataVersion": "5.1"}