Updated on 2025-05-22 GMT+08:00

SEC05-02 Vulnerability Management

With vulnerability management, you can detect and rectify security vulnerabilities in the system in a timely manner, avoiding potential security threats and attacks. Others may illegally obtain system access privileges through security vulnerabilities. You should obtain the latest security intelligence through trusted channels.

  • Risk level

    High

  • Key strategies

    You can install patches to fix security vulnerabilities in a timely manner to prevent malicious individuals or software from damaging service systems and data. Stay informed of the latest security advisories of Huawei Cloud and the industry, and implement mitigation measures to ensure workload security.

    • Stay informed of the latest security suggestions of Huawei Cloud and the industry.

      For details about the latest security information, see Public Notices.

    • Vulnerability scanning and identification: Huawei Cloud services are used to periodically scan systems and applications to detect potential vulnerabilities and security risks.
    • Automatic vulnerability scanning: Use automatic vulnerability scanning tools to periodically scan the runtime environment to detect potential vulnerabilities and security risks.
    • Vulnerability fixing and patch management: Develop a vulnerability fixing plan, fix confirmed vulnerabilities in a timely manner, and manage the release and application of security patches.
    • Detection and removal of malicious code at key nodes: Malicious code must be checked and removed at key network nodes, and the upgrade and update of the malicious code protection mechanism must be maintained.
  • Related cloud services and tools
    • HSS
    • SecMaster
    • CodeArts Inspector