TR-20-049 (Huawei Ürünleri için Güvenlik Güncellemesi Yayınladı)

Genel Bilgi

Huawei, birden çok ürününde bulunan Yol Geçişi ve Komut Enjeksiyonu zafiyetine yönelik güvenlik güncellemesi yayınladı.

Etki

Kritik önem düzeyindeki mevcut güvenlik açıklıkları nedeniyle etkilenen sistemlerin siber saldırganlar tarafından kontrol altına alınması ihtimal dâhilindedir. Bu güncellemelerle CVE-2020-1853, CVE-2020-1872, CVE-2020-1871, CVE-2020-1842, CVE-2020-1882, CVE-2020-1790, CVE-2019-19413, CVE-2019-19414, CVE-2020-1855, CVE-2020-1843, CVE-2020-1789, CVE-2019-19398, CVE-2020-1811 ve CVE-2020-1812 kodlu zaafiyet giderilmiştir.

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), kullanıcı ve sistem yöneticilerine yüksek önem derecesindeki zafiyet için Huawei tarafından yayınlanan güvenlik öneri sayfasını incelemelerini ve ilgili güvenlik tedbirlerini almalarını tavsiye etmektedir.

Kaynaklar

[//www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200108-01-rsa-en]

https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200122-01-digitalbalance-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200102-01-credential-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200122-01-osca-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200122-01-phone-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200122-01-gauss-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200115-01-ldap-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200122-03-osca-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200122-02-osca-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200121-01-osca-en/www.huawei.com/en/psirt/security-advisories/2019/huawei-sa-20191225-01-validation-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200120-01-gaussdb200-en/www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200120-01-smartphone-enSecurity

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200102-01-credential-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-osca-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-gauss-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-ldap-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-02-osca-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200121-01-osca-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200120-01-gaussdb200-en

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200120-01-smartphone-en

//www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200120-01-path-en

2020-01-24