厂商发布
厂商对产品安全、配置或策略的更新说明。
-
Apache MINA Deserialization Vulnerability in Some Huawei Products
The open-source software Apache MINA used by some Huawei products has a deserialization vulnerability. Successful exploitation could lead to remote code execution. (Vulnerability ID:HWPSIRT-2026-63024) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-41409
The open-source software Apache MINA used by some Huawei products has a deserialization vulnerability. Successful exploitation could lead to remote code execution. (Vulnerability ID:HWPSIRT-2026-63024) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-41409The open-source software Apache MINA used by some Huawei products has a deserialization vulnerability. Successful exploitation could lead to remote code execution. (Vulnerability ID:HWPSIRT-2026-63024) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-41409扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2026-63024" ], "language": "en", "sasn_no": "huawei-sa-AMDViSHP-41477998", "sasn_version": "1.0", "severity": "Critical", "vulnerabilities": [ { "cveId": "CVE-2026-41409", "hwPsirtId": "HWPSIRT-2026-63024" } ] } -
Linux Kernel Netfilter Subsystem Out-of-Bounds Read Vulnerability in Some Huawei Products
The Linux kernel netfilter subsystem used by some Huawei products has an out-of-bounds read vulnerability. Successful exploitation could lead to denial of service or information disclosure. (Vulnerability ID:HWPSIRT-2026-43799) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-23455
The Linux kernel netfilter subsystem used by some Huawei products has an out-of-bounds read vulnerability. Successful exploitation could lead to denial of service or information disclosure. (Vulnerability ID:HWPSIRT-2026-43799) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-23455The Linux kernel netfilter subsystem used by some Huawei products has an out-of-bounds read vulnerability. Successful exploitation could lead to denial of service or information disclosure. (Vulnerability ID:HWPSIRT-2026-43799) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-23455扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2026-43799" ], "language": "en", "sasn_no": "huawei-sa-LKNSOoBRViSHP-13135043", "sasn_version": "1.0", "severity": "Critical", "vulnerabilities": [ { "cveId": "CVE-2026-23455", "hwPsirtId": "HWPSIRT-2026-43799" } ] } -
ANSI Escape Sequence Injection Vulnerabilitiy in Some Huawei Products
Some Huawei products that use Apache Tomcat have an ANSI escape sequence injection vulnerability in the Windows console environment. Attackers can exploit this vulnerability to manipulate the console display and induce administrators to execute malicious commands. (Vulnerability ID:HWPSIRT-2025-45144) This vulnerability has been assigned a Common Vulnerabili…
Some Huawei products that use Apache Tomcat have an ANSI escape sequence injection vulnerability in the Windows console environment. Attackers can exploit this vulnerability to manipulate the console display and induce administrators to execute malicious commands. (Vulnerability ID:HWPSIRT-2025-45144) This vulnerability has been assigned a Common VulnerabiliSome Huawei products that use Apache Tomcat have an ANSI escape sequence injection vulnerability in the Windows console environment. Attackers can exploit this vulnerability to manipulate the console display and induce administrators to execute malicious commands. (Vulnerability ID:HWPSIRT-2025-45144) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2025-55754扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2025-45144" ], "language": "en", "sasn_no": "huawei-sa-AESIViSHP-40005749", "sasn_version": "2.5", "severity": "Critical", "vulnerabilities": [ { "cveId": "CVE-2025-55754", "hwPsirtId": "HWPSIRT-2025-45144" } ] } -
OpenSSL Buffer Overflow Vulnerability in Some Huawei Products
The open-source software OpenSSL used by some Huawei products is vulnerable to buffer overflow. Successful exploitation of this vulnerability may lead to sensitive information leakage or denial of service (DoS). (Vulnerability ID:HWPSIRT-2024-55293) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2024-5535
The open-source software OpenSSL used by some Huawei products is vulnerable to buffer overflow. Successful exploitation of this vulnerability may lead to sensitive information leakage or denial of service (DoS). (Vulnerability ID:HWPSIRT-2024-55293) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2024-5535The open-source software OpenSSL used by some Huawei products is vulnerable to buffer overflow. Successful exploitation of this vulnerability may lead to sensitive information leakage or denial of service (DoS). (Vulnerability ID:HWPSIRT-2024-55293) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2024-5535扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2024-55293" ], "language": "en", "sasn_no": "huawei-sa-OBOViSHP-98139787", "sasn_version": "6.7", "severity": "Critical", "vulnerabilities": [ { "cveId": "CVE-2024-5535", "hwPsirtId": "HWPSIRT-2024-55293" } ] } -
Linux Kernel Classic Buffer Overflow Vulnerability in Some Huawei Products
Some Huawei products are affected by the classic buffer overflow vulnerability in open-source software Linux kernel. Successful exploitation of this vulnerability may cause buffer overflow. (Vulnerability ID:HWPSIRT-2024-90214) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2024-38541
Some Huawei products are affected by the classic buffer overflow vulnerability in open-source software Linux kernel. Successful exploitation of this vulnerability may cause buffer overflow. (Vulnerability ID:HWPSIRT-2024-90214) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2024-38541Some Huawei products are affected by the classic buffer overflow vulnerability in open-source software Linux kernel. Successful exploitation of this vulnerability may cause buffer overflow. (Vulnerability ID:HWPSIRT-2024-90214) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2024-38541扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2024-90214" ], "language": "en", "sasn_no": "huawei-sa-LKCBOViSHP-33376191", "sasn_version": "4.2", "severity": "Critical", "vulnerabilities": [ { "cveId": "CVE-2024-38541", "hwPsirtId": "HWPSIRT-2024-90214" } ] } -
Linux Kernel ESP in Some Huawei Products Vulnerable to Local Privilege Escalation "Dirty Frag"
The IPsec ESP in Linux kernel used by some Huawei products has a local privilege escalation vulnerability "Dirty Frag". Successful exploitation of this vulnerability may allow attackers to escalate privileges through page-cache corruption. (Vulnerability ID:HWPSIRT-2026-27380) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) …
The IPsec ESP in Linux kernel used by some Huawei products has a local privilege escalation vulnerability "Dirty Frag". Successful exploitation of this vulnerability may allow attackers to escalate privileges through page-cache corruption. (Vulnerability ID:HWPSIRT-2026-27380) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE)The IPsec ESP in Linux kernel used by some Huawei products has a local privilege escalation vulnerability "Dirty Frag". Successful exploitation of this vulnerability may allow attackers to escalate privileges through page-cache corruption. (Vulnerability ID:HWPSIRT-2026-27380) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-43284扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2026-27380" ], "language": "en", "sasn_no": "huawei-sa-LKEiSHPVtLPEDF-60937345", "sasn_version": "1.9", "severity": "High", "vulnerabilities": [ { "cveId": "CVE-2026-43284", "hwPsirtId": "HWPSIRT-2026-27380" } ] } -
Linux Kernel Local Privilege Escalation Vulnerability "Copy Fail" in Some Huawei Products
The Linux kernel used by some Huawei products has a local privilege escalation vulnerability. Successful exploitation of this vulnerability allows attackers to escalate the local privilege to root or perform container escape. (Vulnerability ID:HWPSIRT-2026-49540) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-31…
The Linux kernel used by some Huawei products has a local privilege escalation vulnerability. Successful exploitation of this vulnerability allows attackers to escalate the local privilege to root or perform container escape. (Vulnerability ID:HWPSIRT-2026-49540) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-31The Linux kernel used by some Huawei products has a local privilege escalation vulnerability. Successful exploitation of this vulnerability allows attackers to escalate the local privilege to root or perform container escape. (Vulnerability ID:HWPSIRT-2026-49540) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID:CVE-2026-31431扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2026-49540" ], "language": "en", "sasn_no": "huawei-sa-LKLPEVCFiSHP-32146806", "sasn_version": "1.8", "severity": "High", "vulnerabilities": [ { "cveId": "CVE-2026-31431", "hwPsirtId": "HWPSIRT-2026-49540" } ] } -
DoS Vulnerability in Some Huawei Data Communication Products
Some Huawei data communication products have a DoS vulnerability. Successful exploitation of this vulnerability may cause an exception when the device parses packets sent from the authenticated peer device, resulting in DoS. (Vulnerability ID:HWPSIRT-2026-29427)
Some Huawei data communication products have a DoS vulnerability. Successful exploitation of this vulnerability may cause an exception when the device parses packets sent from the authenticated peer device, resulting in DoS. (Vulnerability ID:HWPSIRT-2026-29427)Some Huawei data communication products have a DoS vulnerability. Successful exploitation of this vulnerability may cause an exception when the device parses packets sent from the authenticated peer device, resulting in DoS. (Vulnerability ID:HWPSIRT-2026-29427)扩展字段
{ "hw_psirt_ids": [ "HWPSIRT-2026-29427" ], "language": "en", "sasn_no": "huawei-sa-DViSHDCP-42041136", "sasn_version": "1.3", "severity": "High", "vulnerabilities": [ { "cveId": "", "hwPsirtId": "HWPSIRT-2026-29427" } ] }