Huawei Product Security Incident Response Team (PSIRT) manages the receipt, investigation, internal coordination and disclosure of security vulnerability information related to Huawei offerings and it is the only window to disclose the vulnerability of Huawei products. Huawei hopes that security researchers, industry organizations, government agencies and vendors can proactively contact Huawei PSIRT to report potential Huawei product security vulnerabilities. 

Title Version Latest date
Security Advisory - Buffer Overflow vulnerability in the GaussDB V1.1 2017-04-21
Security Advisory - Apache Struts2 Remote Code Execution Vulnerability in Huawei Products V1.2 2017-04-20
Security Advisory - Information Leak Vulnerability in Certain Huawei Products V1.4 2017-04-19
Security Advisory - DoS Vulnerability in Some Huawei Products V1.0 2017-04-19
Security Advisory - Input Validation Vulnerability in Multiple Huawei Products V1.1 2017-04-19
Security Advisory - Input Validation Vulnerability in Multiple Huawei Products V1.0 2017-04-19
Security Advisory - Plaintext Storage of Users’ Safe Passwords in the Files APP in Huawei Mobile Phones V1.0 2017-04-19
Security Advisory - Insufficient Input Validation Vulnerability in Some Huawei Products V1.0 2017-04-19
Security Advisory - OpenSSL Montgomery multiplication may produce incorrect results Vulnerability V1.0 2017-04-19
Security Advisory - Multiple Buffer Overflow Vulnerabilities in Bastet of Huawei Smart Phone V1.0 2017-04-05
Security Advisory - Information Leak Vulnerability in Some Huawei Smart Phones V1.0 2017-04-05
Security Advisory - Several Vulnerabilities on the VCM5010 V1.0 2017-03-29
Security Advisory - Exposed System Interface Vulnerability on Huawei Smart Phones V1.0 2017-03-29
Security Advisory - Bluetooth Unlock Bypassing Vulnerability in Some Huawei Mobile Phones V1.0 2017-03-23
Security Advisory - Stack Overflow Vulnerability in Drive of Huawei Smart Phones V1.1 2017-03-22
Title Version Latest date
Security Notice - Statement on Command Injection Vulnerability in Huawei HG532n Product V1.0 2017-04-18
Security Notice - Statement on Vulnerabilities in Huawei Products Mentioned by Weinmann at the Infiltrate Conference V1.0 2017-04-08
Security Notice - Statement on Remote Code Execution Vulnerability in Apache Struts2 V1.2 2017-03-17
Security Notice - Statement on Zack Whittaker Revealing Security Vulnerability in Dozens of iPhone APPs V1.1 2017-03-14
Security Notice - Statement on Security Researcher Revealing XSS Security Vulnerability in Huawei HG658 V2 on Packet Storm Website V1.0 2017-03-08
Security Notice - Statement on Newsmth.net Forum Revealing Security Issue in Huawei P9 Smart Phone V1.1 2017-02-09
Security Notice - Statement on Flanker Revealing Privilege Elevation Vulnerability in Huawei EMUI Keyguard Application V1.1 2017-01-25
Security Notice - Statement on the Piracy Issue in Huawei OTT Service V1.0 2017-01-19
Security Notice - Statement on the Shamoon Attacks Issue V1.0 2017-01-14
Security Notice - Statement on SaifAllah BenMassaoud Revealing CSRF Security Vulnerability in Huawei B660 Routers V1.0 2017-01-11
Security Notice - Statement on trustlook published the technical report about BadKernel Vulnerability in Google Chrome V8 Engine V1.2 2016-12-28
Security Notice - Statement on the MTK Local Privilege Escalation Vulnerability Mentioned at the GeekPwn Conference V1.1 2016-12-16
Security Notice - Statement on E-mail Information Leak Vulnerability in Android System V1.1 2016-12-14
Security Notice - Statement about the Linux Dirty COW Vulnerability V1.1 2016-12-13
Security Notice - Statement on Huawei P9 Lite’s Fingerprint Unlocking Vulnerability Mentioned at the GeekPwn Conference V1.1 2016-11-23