This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our private policy>

Security Notice - Statement on the Media Disclosure of the Security Vulnerabilities in the Intel CPU Architecture Design

  • Initial Release Date: 2018-01-04
  • Last Release Date: 2018-01-12

Huawei noticed that media had released information about three security vulnerabilities (CVE-2017-5715,CVE-2017-5753,CVE-2017-5754) in the Intel CPU architecture on January 2, 2018. These vulnerabilities allow attackers to obtain kernel memory data through side-channel attacks. Huawei immediately started analysis and investigation and communicated with related CPU and operating system suppliers.

Huawei has delivered Security Advisory (SA) for these vulnerabilities. The link of the SA is: http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180106-01-cpu-en. Customers can get necessary support for product security vulnerabilities through Huawei local technical service. 
      The following products are affected by these vulnerabilities. The investigation is still ongoing. Huawei PSIRT will keep updating the SN, Please stay tuned.

1288H V5

2288H V5

2488 V5

5288 V3

9008

9016

9032

AR100

AR100-S

AR110-S

AR120

AR120-S

AR1220C

AR151-S2

AR1500

AR160(except for AR160F)

AR160-S(except forAR160F-S)

AR2204-XGE

AR3600

AR500

AR510

AR532

AR550C

AR550E

AnyOffice

BH620 V2

BH621 V2

BH622 V2

BH640 V2

CH121

CH121 V3

CH121 V5

CH121L V3

CH140

CH140 V3

CH140L V3

CH220

CH220 V3

CH221

CH222

CH222 V3

CH225 V3

CH226 V3

CH240

CH242

CH242 V3

CH242 V5

DH310 V2

DH320 V2

DH321 V2

DH620 V2

DH621 V2

DH626 V2

DH628 V2

EulerOS

eLog

eSight

FusionCompute

FusionCube

FusionManager

FusionServer G5500

Huawei solutions for SAP HANA

RH1288 V2

RH1288 V3

RH1288A V2

RH2265 V2

RH2268 V2

RH2285 V2

RH2285H V2

RH2288 V2

RH2288 V3

RH2288A V2

RH2288E V2

RH2288H V2

RH2288H V3

RH2485 V2

RH2488 V2

RH5485 V2

RH5885 V2

RH5885 V3

RH5885H V3

RH8100 V3

SRG1320E

SRG550C

XH310 V2

XH310 V3

XH311 V2

XH320 V2

XH321 V2

XH321 V3

XH620 V3

XH621 V2

XH622 V3

XH628 V3

CH121H V3

AnyOffice

eCNS600

eSpace 8950

eSpace CAD

eSpace ECS

eSpace U2980

eSpace UMS

eSpace USM

eSpace VCN3000

iManager NetEco

iManager NetEco 6000

RH1285

RH2285

RSE6500

S7-601u

SMC2.0

T6000

UC Audio Recorder

VCM

VP9630

VP9660


2018-01-12 V1.4 Updated Added the list of the affected products

2018-01-11 V1.3 Updated Added the list of the affected products

2018-01-09 V1.2 Updated Added the list of the affected products

2018-01-06 V1.1 Updated Added the list of the affected products and SA link

2018-01-04 V1.0 INITIAL

Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.

To enjoy Huawei PSIRT services and obtain Huawei product vulnerability information, please visit http://www.huawei.com/en/psirt.
To report a security vulnerability in Huawei products and solutions, please send it to PSIRT@huawei.com. For details, please visit http://www.huawei.com/en/psirt/report-vulnerabilities.