This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our private policy>

Security Notice - Statement about the XSS Vulnerability in the Email APP of Huawei Smartphone Disclosed on Wooyun

  • Initial Release Date: 2016-05-07
  • Last Release Date: 2016-05-07

Huawei was notified about the XSS vulnerability in the email app built in Huawei Smartphone released on Wooyun website. Huawei has immediately launched a thorough investigation.

After the investigation, it has been verified that multiple Huawei Smartphones have the vulnerability, Huawei has delivered Security Advisories. Customers can get necessary support for product security vulnerabilities through Huawei local technical service. The link of the security advisories are:

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160507-01-emailapp-en


2016-05-07 V1.0 FINAL

Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.

To enjoy Huawei PSIRT services and obtain Huawei product vulnerability information, please visit http://www.huawei.com/en/psirt
To report a security vulnerability in Huawei products and solutions, please send it to PSIRT@huawei.com. For details, please visit http://www.huawei.com/en/psirt/report-vulnerabilities.