Qualcomm
Last Update: 2025-12-09
Between 800 and 849
Delivering intelligent computing everywhere.
NAICS: 517
NAICS Definition: Telecommunications
Employees: 45,945
Subsidiaries: 3
12-month incidents
0
Known data breaches
0
Attack type number
1
Comparison Overview
Qualcomm
VS
Huawei
Huawei
Last Update: 2025-12-09
Between 800 and 849
Huawei is a leading global provider of information and communications technology (ICT) infrastructure and smart devices. With integrated solutions across four key domains – telecom networks, IT, smart devices, and cloud services – we are committed to bringing digital to every person, home and organization for a fully connected, intelligent world. Huawei's end-to-end portfolio of products, solutions and services are both competitive and secure. Through open collaboration with ecosystem partners, we create lasting value for our customers, working to empower people, enrich home life, and inspire innovation in organizations of all shapes and sizes. At Huawei, innovation focuses on customer needs. We invest heavily in basic research, concentrating on technological breakthroughs that drive the world forward. We have more than 207,000 employees, and we operate in more than 170 countries and regions. Founded in 1987, Huawei is a private company fully owned by its employees. House Rules This page is for ICT professionals with an interest in Huawei and our industry to engage in open discussions. To facilitate dialogue, please follow these rules: - Huawei holds the right to delete comments that are offensive, misleading, false, unlawful, off-topic and in violation of any regulations. - Repeated violations of any of the above will be removed and users may be blocked. - Huawei does not necessarily endorse the information shared by members. - Please be familiar with and follow LinkedIn's User Agreement. - By publicly uploading a photograph or comment, you give Huawei permission to feature your content. This will always be credited. Please visit the below portals for career or customer service queries. Career page: http://bit.ly/2rdljD7 Customer service: http://bit.ly/2a4mXNY Thank you for visiting us & we hope you enjoy your time on our page.
NAICS: 517
NAICS Definition: Telecommunications
Employees: 131,845
Subsidiaries: 14
12-month incidents
1
Known data breaches
1
Attack type number
1
Compliance Badges Comparison
Security & Compliance Standards Overview
Qualcomm
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Huawei
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Compliance Summary
Qualcomm
100%
Compliance Rate
0/4 Standards Verified
Huawei
0%
Compliance Rate
0/4 Standards Verified
Benchmark & Cyber Underwriting Signals
Incidents vs Telecommunications Industry Average (This Year)
No incidents recorded for Qualcomm in 2025.
Incidents vs Telecommunications Industry Average (This Year)
Huawei has 31.58% more incidents than the average of same-industry companies with at least one recorded incident.
Incident History — Qualcomm (X = Date, Y = Severity)
Qualcomm cyber incidents detection timeline including parent company and subsidiaries
Incident History — Huawei (X = Date, Y = Severity)
Huawei cyber incidents detection timeline including parent company and subsidiaries
Notable Incidents
Last 3 Security & Risk Events by Company
Qualcomm
Incidents
Date Detected: 8/2024
Type:Vulnerability
Attack Vector: GPU Driver Exploitation
Motivation: Full Device Control
Blog: Blog
Huawei
Incidents
Date Detected: 10/2025
Type:Breach
Motivation: Financial Gain (sale of source code), Reputation (underground forum credibility), Potential Espionage or Competitive Advantage
Blog: Blog
FAQ
Qualcomm company demonstrates a stronger AI Cybersecurity Score compared to Huawei company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.
Qualcomm and Huawei have experienced a similar number of publicly disclosed cyber incidents.
In the current year, Huawei company has reported more cyber incidents than Qualcomm company.
Neither Huawei company nor Qualcomm company has reported experiencing a ransomware attack publicly.
Huawei company has disclosed at least one data breach, while Qualcomm company has not reported such incidents publicly.
Neither Huawei company nor Qualcomm company has reported experiencing targeted cyberattacks publicly.
Qualcomm company has disclosed at least one vulnerability, while Huawei company has not reported such incidents publicly.
Neither Qualcomm nor Huawei holds any compliance certifications.
Neither company holds any compliance certifications.
Huawei company has more subsidiaries worldwide compared to Qualcomm company.
Huawei company employs more people globally than Qualcomm company, reflecting its scale as a Telecommunications.
Neither Qualcomm nor Huawei holds SOC 2 Type 1 certification.
Neither Qualcomm nor Huawei holds SOC 2 Type 2 certification.
Neither Qualcomm nor Huawei holds ISO 27001 certification.
Neither Qualcomm nor Huawei holds PCI DSS certification.
Neither Qualcomm nor Huawei holds HIPAA certification.
Neither Qualcomm nor Huawei holds GDPR certification.
Latest Global CVEs (Not Company-Specific)
Description
NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Description
uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
Description
A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
