Huawei was notified about information released by US CERT regarding the XSS security vulnerability in Huawei E355 on July 21th, 2014.
Huawei has developed a fixing plan for this vulnerability, and will soon release a fixed version.
Recently, Huawei PSIRT will release the Security Advisory for this vulnerability on Huawei products which are disclosed by US CERT. Please focus on Huawei Security Bulletins continuously. The links are:
2014-07-23 V1.0 INITIAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism. Please report to Huawei PSIRT at email@example.com if you find any security vulnerability of Huawei products.