Security Notice - Statement on Black Hat Europe 2015 Revealing Security Vulnerability in Huawei P7 Smart Phone
- Initial Release Date: Nov 13, 2015
- Last Release Date: Nov 24, 2015
Huawei was notified about information released by Yu-Cheng Lin from Information Security Lab of National Tsing Hua University regarding app validity check bypass security vulnerability in Huawei P7 smart phone at the Black Hat Europe 2015 conference held in November 2015.
The researcher has sent the vulnerability information to Huawei PSIRT (PSIRT@huawei.com) before disclosing the information. Huawei immediately started investigation and analysis. Huawei has released the fix version for P7 in November 2014.
Huawei has delivered Security Advisory, The link of the security advisory is:
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-397472.htm
Here, we express our appreciation for Information Security Lab of National Tsing Hua University and Yu-Cheng Lin’s concerns on Huawei products.
2015-11-24 V1.1 FINAL
2015-11-13 V1.0 INITIAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism. Please report to Huawei PSIRT at psirt@huawei.com if you find any security vulnerability of Huawei products.
