Security Notice-Statement on Multiple Vulnerabilities in Huawei P2 Smartphone
- Initial Release Date: Nov 29, 2014
- Last Release Date: Dec 02, 2014
Huawei was notified of the information released by MWR InfoSecurity Labs regarding multiple security vulnerabilities in Huawei P2 Smartphone.
1) Local Root Privilege Escalation
2) Remote Code Execution through Mitm Attack on Kingsoft Office
Huawei immediately has launched a thorough investigation.
The investigation has been completed and it is confirmed that Huawei P2 Smartphone is affected.
Huawei has released a security advisory (SA) and fixed versions. Customers can ask for support from local Huawei technical support services if necessary. The links is:
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-401529.htm
Here, we express our appreciation for MWR InfoSecurity Labs’s concerns on Huawei products.
2014-12-02 V1.1 UPDATED Added the SA link
2014-11-29 V1.0 INITIAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism. Please report to Huawei PSIRT at psirt@huawei.com if you find any security vulnerability of Huawei products.
