This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy (update in May 2018) >

Security Notice - Statement on Microsoft Remote Code Execution Vulnerability(CVE-2019-0708)

  • Initial Release Date: May 15, 2019
  • Last Release Date: May 29, 2019

Recently, Microsoft released fixes for a Remote Code Execution vulnerability (CVE-2019-0708) in Remote Desktop Services. The fixes are offered to Windows products including out-of-support ones. Unauthenticated attackers can exploit this vulnerability to send malicious requests to target Windows hosts and execute arbitrary code on affected systems. This vulnerability may be exploited by malware, meaning that it can be exploited in a similar way as the WannaCry malware spread across the globe in 2017.

Huawei has released a Security Advisory (SA) at https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-en.



2019-05-29 V1.1 UPDATED Add SA link

2019-05-15 V1.0 INITIAL


Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.

To enjoy Huawei PSIRT services and obtain Huawei product vulnerability information, please visit http://www.huawei.com/en/psirt.
To report a security vulnerability in Huawei products and solutions, please send it to PSIRT@huawei.com. For details, please visit http://www.huawei.com/en/psirt/report-vulnerabilities.

Customers should contact Huawei TAC (Huawei Technical Assistance Center) to get necessary support for product security vulnerabilities. For TAC contact information, please refer to Huawei worldwide website at: http://www.huawei.com/en/psirt/report-vulnerabilities.