The official site for Saudi CERT
Huawei Updates
3689
Warning Date
Severity Level
Warning Number
Target Sector
19 July, 2020
● High
2020-1520
All
Description:
Huawei has released security updates to address multiple vulnerabilities in the following products:
- SMSGW - Apache Tomcat
- V100R001C01LG0701
- V100R001C01LG0801
- V100R001C01LG0901
- V100R002C11LG1901
- V100R002C11LG2501
- V100R002C11LG2601
- V100R002C11LG3001
- V100R002C11LG3201
- V100R002C11LG3501
- V100R002C11LG3701
- V100R003C01LG2401
- V100R003C01LG3501
- V100R003C01LG3601
- V100R003C01LG3701
- V100R003C01LG3801
- V100R003C01LG3901
- V100R003C01LG4001
- V100R003C01LG4101
- V100R003C01LG4201
- V100R003C01LG4301
- V100R003C01LG5101
- V100R003C01LG5201
- V100R003C01LG5401
- V100R003C01LG5501
- V100R003C01LG6001
- V100R003C01LG6101
- V100R003C01LG6201
- V100R003C01LG6301
- V100R003C01LG7001
- V100R003C01LI0101
- V100R003C01LM1501
- V100R003C01LRC001
- V100R003C01LRC003
- V100R003C01LRC004
- V100R003C01LRC005
- V100R003C01LRC006
- V100R003C01LRC007
- V100R003C01LRC008
- V100R003C01LRC009
- V100R003C01LRG002
- V100R003C01LRG003
- V100R003C01LRG003SPC001
- V100R003C01LRG003SPC002
- V100R003C01LRG004
- V100R003C01LRG005
- V100R003C01LRG006
- V100R003C01LRG007
- V100R003C01LRG008
- V100R003C01LRG009
- V100R003C01LRG020
- V100R003C01LRG021
- V100R003C01LRG022
- V100R003C01LRG023
- V100R003C01LRG024
- V100R003C01LRG025
- V100R003C01LRG029
- V100R003C01LRG030
- V100R003C01LRG032
- V100R003C01LRI001
- V100R003C01LRI002
- V100R003C01LRI002SPC001
- V100R003C01LRM001
- V100R003C01LRS001
- V100R003C01LRS002
- V100R003C01LRW002
- V100R003C01LRW003
- V100R003C01LU0701
- V100R003C01LU0801
- V100R003C01LU0901
- V100R003C01LU1001
- V100R003C01LU1101
- V100R003C01LU1201
- V100R003C01LU1301
- V100R003C01LU1401
- V100R003C01LU1501
- V100R003C01LU1601
- V100R003C01LU1701
- V100R003C01LU2201
- V100R003C01LU2301
- V100R003C01LU2601
- V100R003C01LU2701
- FusionCube - OpenSSL
- 3.2.1.SPC201
- 6.0.06
- .0.RC3
- Moana-AL00B
- Versions earlier than 10.1.0.166
- HUAWEI P30 Pro
- Versions earlier than 10.1.0.123(C432E19R2P5patch02)
- Versions earlier than 10.1.0.126(C10E11R5P1)
- Versions earlier than 10.1.0.160(C00E160R2P8)
- Mate 30 Pro
- Versions earlier than 10.1.0.150(C00E136R5P3)
- Honor 10
- Versions earlier than 10.0.0.178(C00E178R1P4)
- HUAWEI Mate 20
- Versions earlier than 10.1.0.160(C00E160R3P8)
- HUAWEI Mate 20 X
- Versions earlier than 10.1.0.135(C00E135R2P8)
- HUAWEI Mate 20 RS
- Versions earlier than 10.1.0.160(C786E160R3P8)
- Honor Magic2
- Versions earlier than 10.1.0.160(C00E160R2P11)
- Honor V30
- Versions earlier than 10.1.0.212(C00E210R5P1)
- CloudEngine 12800
- V200R002C50SPC800
- V200R003C00SPC810
- V200R005C00SPC800
- V200R005C10SPC800
- V200R019C00SPC800
- CloudEngine 5800
- V200R002C50SPC800
- V200R003C00SPC810
- V200R005C00SPC800
- V200R005C10SPC800
- V200R019C00SPC800
- CloudEngine 6800
- V200R002C50SPC800
- V200R003C00SPC810
- V200R005C00SPC800
- V200R005C10SPC800
- V200R005C20SPC800
- V200R019C00SPC800
- CloudEngine 7800
- V200R002C50SPC800
- V200R003C00SPC810
- V200R005C00SPC800
- V200R005C10SPC800
- V200R019C00SPC800
- Agile Controller-Campus - Windows DNS Server
- V100R002C00
- V100R002C00SPC100
- V100R002C00SPC101
- V100R002C00SPC102
- V100R002C00SPC103
- V100R002C00SPC105
- V100R002C00SPC106
- V100R002C00SPC107
- V100R002C00SPC200
- V100R002C10
- V100R002C10SPC100
- V100R002C10SPC101
- V100R002C10SPC200
- V100R002C10SPC300
- V100R002C10SPC400
- V100R002C10SPC401
- V100R002C10SPC402
- V100R002C10SPC403
- V100R002C10SPC404
- V100R002C10SPC405
- V100R002C10SPC406
- V100R002C10SPC407
- V100R002C10SPC408
- V100R002C10SPC409
- V100R002C10SPC410
- V100R002C10SPC411
- V100R003C30
- V100R003C30SPC100
- V100R003C30SPC101
- V100R003C30SPC102
- V100R003C30SPC103
- V100R003C30SPC105
- V100R003C30SPC106
- V100R003C50
- V100R003C50SPC100
- V100R003C50SPC200
- V100R003C50SPC300
- V100R003C50SPC301
- V100R003C50SPC302
- V100R003C50SPC303
- V100R003C50SPC305
- V100R003C50SPC306
- V100R003C60
- V100R003C60SPC100
- V100R003C60SPC200
- V100R003C60SPC201
- V100R003C60SPC202
- V100R003C60SPC203
- V100R003C60SPC205
- V100R003C60SPC206
- V100R003C60SPC207
- V100R003C60SPC208
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Read files remotely.
- Denial of service (DoS)
- Disclosure of information.
- Execute arbitrary code.
Best practice and Recommendations:
The CERT team encourages users to review Huawei security advisory and apply the necessary updates:
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-01-tomact-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-01-openssl-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-09-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-03-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-04-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-05-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-06-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-07-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-02-smartphone-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-03-informationleak-en
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200716-01-dns-en
Rate the content
Share the page
