Huawei Updates
1753Warning Date
Severity Level
Warning Number
Target Sector
17 December, 2020
● High
2020-2218
All
Description:
Huawei has released security updates to address several vulnerabilities in the following products:
- CloudEngine 12800
- V200R019C00SPC800
- CloudEngine 5800
- V200R019C00SPC800
- CloudEngine 6800
- V200R005C20SPC800
- V200R019C00SPC800
- CloudEngine 7800
- V200R019C00SPC800
- HUAWEI Mate 30
- Versions earlier than 10.1.0.156(C00E155R7P2)
- Taurus-AL00A
- 10.0.0.1(C00E1R1P1)
- iManager NetEco 6000
- V600R021C00
- Jackman-AL00D
- 8.2.0.185(C00R2P1)
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Bypass of a protection mechanism
- Unauthorized disclosure of information
Best practice and Recommendations:
The CERT team encourages users to review Huawei security advisory and apply the necessary updates:
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-obr-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-vrp-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-taurus-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-neteco-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-02-smartphone-en