CVE-2026-25781, published May 19, describes a local denial-of-service flaw in OpenHarmony v6.0 rated CVSS 8.4. Exploitation requires local access but results in a crash state from which the OS cannot self-recover, effectively bricking the device until a manual power cycle or reflash is performed. This vulnerability is distinct from the two RCE flaws published on the same day (CVE-2026-27648 and CVE-2026-24792) but compounds the risk profile of OpenHarmony v6.0 overall. Device manufacturers shipping OpenHarmony-based products should treat the trio of May 19 disclosures as a coordinated signal to expedite patch evaluation.