Security Notice - Statement about Path Traversal Vulnerability in Huawei HG532 Routers Disclosed by CERT/CC
- Initial Release Date: 2015-11-09
- Last Release Date: 2015-11-24
Huawei noticed that CERT/CC disclosed the path traversal vulnerability in Huawei HG532 routers on November 6, 2015. CERT/CC had reported the vulnerability information to Huawei PSIRT before the disclosure. Huawei launched an investigation immediately.
It is confirmed that several Huawei home gateway products have this vulnerability. Huawei has delivered Security Advisory. The link of the security advisory is:
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-462908.htm
Customers can get necessary support for product security vulnerabilities through Huawei local technical service.
We express our appreciation for CERT/CC’s concerns on Huawei products.
2015-11-24 V1.1 FINAL
2015-11-09 V1.0 INITIAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism. Please report to Huawei PSIRT at psirt@huawei.com if you find any security vulnerability of Huawei products.