Security Notice - Statement About the SQL Injection Vulnerability and the Weak Password Problem in Huawei BPO Service Software Disclosed by WooYun

Initial Release Date: 2015-09-30
Last Release Date: 2015-09-30

Security Notice

Huawei has noticed that WooYun disclosed the SQL injection vulnerability and the weak password problem in a service system of Huawei and immediately launched an investigation.

According to the completed investigation, the vulnerability exists in the BPO service software. Huawei has fixed the SQL injection vulnerability and informed the related customers of weak password rectification.

Revision History

2015-09-30 Final

Huawei Security Procedures

Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism. Please report to Huawei PSIRT at psirt@huawei.com if you find any security vulnerability of Huawei products.

Select a Country or Region

Products

Connectivity

Computing

Cloud

Services

Industry Solutions

Consumer Support

Huawei Cloud Support

Enterprise Support

Carrier Support

Partners

Training & Certification

Developers

About Us

News & Events

Explore More

SEARCH HISTORY

Security Notice - Statement About the SQL Injection Vulnerability and the Weak Password Problem in Huawei BPO Service Software Disclosed by WooYun

Select a Country or Region

Connectivity

Computing

Cloud

SEARCH HISTORY

Security Notice - Statement About the SQL Injection Vulnerability and the Weak Password Problem in Huawei BPO Service Software Disclosed by WooYun

Online Services

Consumer Products

Huawei Cloud

Enterprise

Carrier Network