Security Advisory - Remote Code Execution Vulnerability in Some Microsoft Windows Systems

Microsoft released a security advisory to disclose a remote code execution vulnerability in Remote Desktop Services. An unauthenticated attacker connects to the target system using RDP and sends specially crafted requests to exploit the vulnerability. Successful exploit may cause arbitrary code...

Security Advisory - Privilege Escalation Vulnerability in Some Huawei Products

Products Switches Routers WLAN Storage See All Solutions Cloud Data Center Enterprise Networking Intelligent Computing Solutions by Industry See All Services Training and Certification Industry Cloud Enablement Service Improvement Service Customer Support Service See All Partner Find a Partner...

Security Advisory-OpenSSL Heartbeat Extension vulnerability (Heartbleed bug) on Huawei multiple products

Some OpenSSL software versions used in multiple Huawei products have the following OpenSSL vulnerability. Unauthorized remote attackers can dump 64 Kbytes of memory of the connected server or client in each attack. The leaked memory may contain sensitive information, such as passwords and private...

Security Advisory - Apache log4j2 remote code execution vulnerabilities in some Huawei products

Some Huawei products are affected by the Apache Log4j2 remote code execution vulnerabilities. The vulnerabilities are caused by a recursive parsing error in some functions of Apache Log4j2. An attacker can construct a malicious request to control log parameters to trigger a remote code execution...

Security Advisory - Apache Struts2 Remote Code Execution Vulnerability in Huawei Products

Apache Struts2 released a remote code execution vulnerability in S2-045 on the official website. An attacker is possible to perform a RCE Remote Code Execution attack with a malicious Content-Type value. Vulnerability ID: HWPSIRT-2017-03094 This vulnerability has been assigned a CVE ID:...

Security Advisory - XSS Vulnerability in Huawei HedEx products

There is a reflection XSS vulnerability in the HedEx products. Remote attackers send malicious links to users and trick users to click. Successfully exploit cloud allow the attacker to launch XSS attacks. Vulnerability ID: HWPSIRT-2018-12124 This vulnerability has been assigned a Common...

Security Advisory - Integer Overflow Vulnerability in the Linux Kernel (SACK Panic)

An integer overflow vulnerability was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. A remote attacker could use this to cause a denial of service. Vulnerability ID: HWPSIRT-2019-06130 This vulnerability has been assigned a Common...

Security Advisory - DLL Hijacking Vulnerability on Huawei HiSuite

The HiSuite is mobile assistant software on PCs. This software contains a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing that could execute arbitrary code...

Security Advisory - Information Disclosure Vulnerability on Secure Input

There is an information disclosure vulnerability on Secure Input of certain Huawei smartphones. The Secure Input does not properly limit certain system privilege, an attacker tricks the user to install a malicious application, successful exploit could result in information disclosure. Vulnerabili...

Security Advisory - CPU Side Channel Vulnerability "L1TF"

Intel and security researchers publicly disclosed three new cpu side-channel vulnerabilities CVE-2018-3615, CVE-2018-3620 and CVE-2018-3646. Successful exploit of these vulnerabilities could allow a local attacker to read the memory of other processes in specific situations. These vulnerabilities...

Security Advisory - Digital Signature Verification Bypass Vulnerability in Some Huawei Routers

There is a digital signature verification bypass vulnerability in some Huawei routers. The vulnerability is due to the affected software improperly verifying digital signatures for the software image in the affected device. A local attacker with high privilege may exploit the vulnerability to...

Security Advisory - Improper Authentication Vulnerability in Bluetooth Affect Several Huawei Products

There is an improper authentication vulnerability in Bluetooth affect several Huawei products. Legacy pairing and secure-connections pairing authentication in Bluetooth® BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing...

Security Advisory - Improper Authentication Vulnerability on PC Manager

There is an improper authentication vulnerability on PC Manager. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution. Vulnerability ID: HWPSIRT-2019-04061 This vulnerability has been...

Security Advisory - FRP Bypass Vulnerability on Several Smartphones

There is a Factory Reset Protection FRP bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step of setup wizard. Successful exploit could allow the attacker bypass the FRP protection. Vulnerabili...

Security Advisory – Multiple “BlueBorne” vulnerabilities on Huawei Products

There are multiple vulnerabilities of the BlueTooth Network in some Huawei products. These vulnerabilities are as follows: 1.Remote Code Execution Vulnerability This vulnerability resides in the Bluetooth Network Encapsulation Protocol BNEP service, which enables internet sharing over a Bluetooth...

Security Advisory - Three Vulnerabilities in Huawei GaussDB

There is a information leak vulnerability in libevent of Huawei GaussDB. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending a forged DNS response to an application using libevent. Successful exploit of the vulnerability could lead to reading data o...

Security Advisory - Signature Verification Bypass Vulnerability in Some Huawei Mobile Phones

Some Huawei mobile phones have a signature verification bypass vulnerability. Attackers can induce users to install malicious applications. Due to a defect in the signature verification logic, the malicious applications can invoke specific interface to execute malicious code. A successful exploit...

Security Advisory - Double Free Vulnerability on Bastet Module of Some Huawei Smartphones

There is a double free vulnerability on Bastet module of some Huawei smartphones. An attacker tricks the user into installing a malicious application, which frees on the same memory address twice. Successful exploit could result in malicious code execution. Vulnerability ID: HWPSIRT-2018-12500 Th...

Security Advisory - Privilege Elevation Vulnerability in Microsoft Windows Kerberos Key Distribution Center

Microsoft released a security bulletin MS14-068 to publicly disclose a vulnerability in in Kerberos Key Distribution Center KDC. The vulnerability could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. Vulnerability ID:...

Security Advisory - Multiple Vulnerabilities Released on Microsoft Security Advisory 4025685

Microsoft had released a Security Advisory 4025685 on June 14 to fix multiple critical security vulnerabilities in such systems as Microsoft Windows XP, Windows Server 2003, Windows VISTA, and Windows 8. Attackers can exploit these vulnerabilities to implement remote code execution or privilege...

Security Advisory - Information Leak Vulnerability in Some Huawei Smart Phones

Some Huawei smartphones have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process information, which may cause sensitive information leak...

Security Advisory - Glibc Buffer Overflow Vulnerability

Huawei noticed that Qualys had disclosed the buffer overflow in the GNU C Library glibc on January 27th, 2015, Applications call various gethostbyname function are affected and attackers can exploit this vulnerability to perform remote code execution. Vulnerability ID: HWPSIRT-2015-01045 This...

Security Advisory - SNMP vulnerability on Huawei multiple products

In some of Huawei products as affected products list below, there are MIBs which support the query of the local user account and password. However, the security authentication protection for SNMP V1 and V2 is not enough, which leads to the risk that the user account and password can be disclosed...

Security Advisory - 'WannaCry ransomware' Vulnerabilities in Microsoft Windows Systems

Huawei noticed that the WannaCry ransomware targeting at Windows exploits multiple vulnerabilities in Windows Server Message Block v1 SMBv1. These vulnerabilities were disclosed by Microsoft in Microsoft security bulletin MS17-010 on March 14. Successful exploit of these vulnerabilities could all...

Security Advisory - Three Vulnerabilities in Huawei PCManager Product

There are two code execution vulnerabilities in Huawei PCManager product. Successful exploitation may cause the attacker to execute code and read/write information. Vulnerability ID: HWPSIRT-2019-05105 and HWPSIRT-2019-05131 The two vulnerabilities have been assigned two Common Vulnerabilities an...

Security Advisory - Sixteen OpenSSL Vulnerabilities on Some Huawei products

Statem/statem.c in OpenSSL 1.1.0a does not consider memory-block movement after a realloc call, which allows remote attackers to cause a denial of service use-after-free or possibly execute arbitrary code via a crafted TLS session. Vulnerability ID: HWPSIRT-2016-09065 This vulnerability has been...

Security Advisory - Page-Cache Side-Channel Vulnerability

There is a vlunerability in the mincore implementation in mm/mincore.c in the Linux kernel through 4.19.13. An attacker could exploit this vulnerability to conduct a page-cache side-channel attack, allowing the attacker to view page-cache access patterns of other processes on the system. A...

Security Advisory - Password Verification Vulnerability of Huawei Router

There is a password verification vulnerability in WS7200-10.Attackers on the LAN may use brute force cracking to obtain passwords, which may cause sensitive system information to be disclosed. Vulnerability ID: HWPSIRT-2022-16010 This vulnerability has been assigned a Common Vulnerabilities and...

Security Advisory - FragmentSmack Vulnerability in Linux Kernel

Products Switches Routers WLAN Storage See All Solutions Cloud Data Center Enterprise Networking Intelligent Computing Solutions by Industry See All Services Training and Certification Industry Cloud Enablement Service Improvement Service Customer Support Service See All Partner Find a Partner...

Security Advisory - TLS Certificate Verification Vulnerability in Huawei 7900 IP Phones

There is a TLS certificate verification vulnerability in the SIP TLS module of Huawei 7900 IP Phones. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attacks, leading to the affected phones registered abnormally,...

Security Advisory - DoS Vulnerability in Huawei S Series Switch Products

Some Huawei S series switches have a DoS vulnerability. An unauthenticated remote attacker can send crafted packets to the affected device to exploit this vulnerability. Due to insufficient verification of the packets, successful exploitation may cause the device reboot and denial of service DoS...

Security Advisory - Out-of-bounds Read Vulnerability in Some Huawei Smartphones

Some Huawei smartphones have an out-of-bounds read vulnerability. An attacker with a high permission runs some specific commands on the smartphone. Due to insufficient input verification, successful exploit may cause out-of-bounds read of the memory and the system abnormal. Vulnerability ID:...

Security Advisory - Use-after-free Vulnerability in Android Kernel

There is a use-after-free vulnerability in binder.c of Android kernel. Successful exploitation may cause the attacker elevate the privilege. Vulnerability ID: HWPSIRT-2019-10100 This vulnerability has been assigned a Common Vulnerabilities and Exposures CVE ID: CVE-2019-2215. Huawei has released...

Security Advisory - Key Negotiation of Bluetooth (KNOB) Vulnerability

The KNOB Key Negotiation of Bluetooth vulnerability exists in the encryption key negotiation process between two Bluetooth BR/EDR devices. The negotiation process is not encrypted and no authentication is performed. An unauthenticated, adjacent attacker can initiate a man-in-the-middle attack to...

Security Advisory - Dirty COW Vulnerability in Huawei Products

In the morning of October 21th, 2016, a security researcher Phil Oester disclosed a local privilege escalation vulnerability in Linux kernel. A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write COW breakage of private read-only memory mappings. An...

Security Advisory - Some Huawei 4G LTE devices are exposed to a message replay vulnerability

Some Huawei 4G LTE devices are exposed to a message replay vulnerability. or the sake of better compatibility, these devices implement a less strict check on the NAS message sequence number SN, specifically NAS COUNT. As a result, an attacker can construct a rogue base station and replay the GUTI...

Security Advisory-Multiple Apache Struts2 Vulnerabilities in Huawei Products

Apache Struts2 is a second-generation and enterprise-ready Java web application framework based on the Model-View-Controller MVC architecture. This advisory describes four vulnerabilities of Apache Struts 2.0.0 - 2.3.15. Huawei products and applications using the above versions of Apache Struts a...

Security Advisory - Sudo Privilege Escalation Vulnerability

A heap-based buffer overflow vulnerability was found in the way sudo parses command line arguments. This flaw is exploitable by any authenticated, local user who can execute the sudo command. Successful exploitation of this flaw could lead to privilege escalation. Vulnerability ID:...

Security Advisory - Improper Authentication Vulnerability in Some Huawei AP Products

There is an improper authentication vulnerability in some Huawei AP products. Due to the improper implementation of authentication for the serial port, an attacker could exploit this vulnerability by connecting to the affected products and run a series of commands. Vulnerability ID:...

Security Advisory - MITM Vulnerability on Huawei Share

There is a man-in-the-middleMITM vulnerability on Huawei Share of certain smartphones. When users establish connection and transfer data through Huawei Share, an attacker could sniffer, spoof and do a series of operations to intrude the Huawei Share connection and launch a man-in-the-middle attac...

Security Advisory - Side-Channel Vulnerability Variants 3a and 4

Intel publicly disclosed new variants of the side-channel central processing unit CPU hardware vulnerabilities known as Spectre and Meltdown. These variants known as 3A （CVE-2018-3640）and 4 （CVE-2018-3639, local attackers may exploit these vulnerabilities to cause information leak on the affected...

Security Advisory - Multiple Vulnerabilities of WPA and WPA2 Protocol in Some Huawei Products

There are ten WPA Wi-Fi Protected Access and WPA2 protocol vulnerabilities in some Huawei products: Wi-Fi Protected Access WPA and WPA2 allows reinstallation of the Pairwise Transient Key PTK Temporal Key TK during the four-way handshake, allowing an attacker within radio range to replay, decrypt...

Security Advisory - Insufficient Input Validation Vulnerability in Some Huawei Products

There is an insufficient input validation vulnerability in some Huawei products. Due to incorrect input validation logic, a high-privilege attacker should bypass the device security detection mechanism, then modify the memory of the device by doing a series of operations. Successful exploit may...

Security Advisory - Version Downgrade Vulnerabilities on Smartphones and HiSuite

There are version downgrade vulnerabilities on smartphones and HiSuite. The device and HiSuite software do not validate the upgrade package sufficiently, so that the system of smartphone can be downgraded to an older version. Vulnerability ID: HWPSIRT-2019-06023 and HWPSIRT-2019-06024 The two...

Security Advisory - Information Disclosure Vulnerability about SWAPGS Instruction

An information disclosure vulnerability exists when certain x86-64-bit central processing units CPU speculatively access memory, this vulnerability uses the SWAPGS instruction in the CPU. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially...

Security Advisory - CPU Vulnerabilities 'Meltdown' and 'Spectre'

Security researchers disclosed two groups of CPU vulnerabilities "Meltdown" and "Spectre". In some circumstances, a local attacker could exploit these vulnerabilities to read memory information belonging to other processes or other operating system kernel. Vulnerability ID: HWPSIRT-2018-01001,...

Security Advisory - Multiple Vulnerabilities in the X.509 Implementation in Some Huawei Products

There is a denial of service vulnerability in some Huawei products. Due to a flaw in the X.509 implementation in the affected products which can result in a heap buffer overflow when decoding a certificate, an attacker may exploit the vulnerability by a malicious certificate to perform a denial o...

Security Advisory - DoS Vulnerability in RTSP Module of Huawei Smart Phones

There is a DoS vulnerability in RTSP module of some Huawei smart phones. Remote attacker could trick the user into opening a malformed RTSP media stream to exploit this vulnerability. Successful exploit could cause the affected phone abnormal, leading to a DoS condition. Vulnerability ID:...

Security Advisory - Missing Integrity Checking Vulnerability on Some Huawei Products

There is a missing integrity checking vulnerability on some Huawei products. The software of the affected products does not check the integrity which may allow an attacker with high privilege to make malicious modifications without detection. Vulnerability ID: HWPSIRT-2019-01085 This vulnerabilit...

Security Advisory - FRP Bypass Vulnerability on Some Huawei Smartphones

Some Huawei phones have a Factory Reset Protection FRP bypass security vulnerability. Before the FRP account is verified and activated during the reset process, the attacker can perform some special operations to bypass the FRP function and obtain the right to use the mobile phone. Vulnerability...