The official site for Saudi CERT
Huawei Updates
3174
Warning Date
Severity Level
Warning Number
Target Sector
8 December, 2019
● High
2019-693
All
Description:
Huawei has released security Updates to address vulnerabilities in the following products:
- Mate 20 Pro Smartphones
- Honor V10 Smartphones
- P30 Smartphones
- Mate 20 Smartphones
- Honor 9 Lite Smartphones
- Honor 9i Smartphones
- M6 Smartphones
- P30 Pro Smartphones
- Honor 20s Smartphones
- E5572-855 Routers
- Y9 Smartphones
- Honor 8X Smartphones
- Y6 Pro Smartphones
- NetEngine16EX Routers
- S6700, S5700, S12700, S1700, S2700, S5700, S6700, S7700, S9700 Switches
- SRG1300, SRG2300, SRG3300
- CampusInsight
- FusionCompute
- RSE6500 Recording and Streaming Engine
- eSpace ECS
- iManager NetEco, iManager NetEco 6000
- CloudEngine 12800 Switches
- AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR3600 Routers
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Unauthorized disclosure of information
- Bypass of a protection mechanism
- Database crash
- Execute arbitrary code
- Use the application locked by Applock
Best practice and Recommendations:
The CERT team encourages users to review Huawei security advisory and apply the necessary Updates:
- https://www.huawei.com/en/psirt/all-bulletins
- The product that supports automatic update will receive a system update prompt. You can install the update to fix the vulnerability.
- Update Smartphone https://consumer.huawei.com/en/support/update/
- Update routershttp://support.huawei.com/enterprise/eg/software/universal-service-router-pid-7923146
Rate the content
Share the page
