This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy

Security Notice - Statement on Black Hat Europe 2015 Revealing Security Vulnerability in Huawei P7 Smart Phone

  • Initial Release Date: Nov 13, 2015
  • Last Release Date: Nov 24, 2015

Huawei was notified about information released by Yu-Cheng Lin from Information Security Lab of National Tsing Hua University regarding app validity check bypass security vulnerability in Huawei P7 smart phone at the Black Hat Europe 2015 conference held in November 2015.

The researcher has sent the vulnerability information to Huawei PSIRT (PSIRT@huawei.com) before disclosing the information. Huawei immediately started investigation and analysis. Huawei has released the fix version for P7 in November 2014.

Huawei has delivered Security Advisory, The link of the security advisory is:

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-397472.htm

Here, we express our appreciation for Information Security Lab of National Tsing Hua University and Yu-Cheng Lin’s concerns on Huawei products.

2015-11-24 V1.1 FINAL

2015-11-13 V1.0 INITIAL

Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism. Please report to Huawei PSIRT at psirt@huawei.com if you find any security vulnerability of Huawei products.