Inspur takes security vulnerabilities very seriously and seeks to respond quickly and appropriately. We are working to resolve issues quickly when problems arise, and providing recommendations through security advisories and security notices.
Security Notice (SN): Provide information of general interest about security topics related to Inspur products or the use of Inspur products.
Security Advisory (SA): Provide information about security vulnerabilities identified with Inspur products, including any fixes, workarounds or other actions.
To report an Inspur product vulnerability or find out how vulnerabilities are handled, please visit the Product Security Incident Response page.
Inspur takes security vulnerabilities very seriously and seeks to respond quickly and appropriately. We are working to resolve issues quickly when problems arise, and providing recommendations through security advisories and security notices.
Security Notice (SN): Provide information of general interest about security topics related to Inspur products or the use of Inspur products.
Security Advisory (SA): Provide information about security vulnerabilities identified with Inspur products, including any fixes, workarounds or other actions.
To report an Inspur product vulnerability or find out how vulnerabilities are handled, please visit the Product Security Incident Response page.
LATEST
Security Notice – Statement On Some Vulnerabilities Published In Intel 2021.2 IPU
On February 8th, Intel reported potential security vulnerabilities in some Intel Processors that may allow an authenticated user to potentially enable information disclosure or escalation of privilege with local access. INTEL-SA-00589:CVE-2021-33120…
Security Notice – Statement On Apache Log4j2 Vulnerability CVE-2021-44228
Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled...
Security Notice – Statement on the SPF Vulnerability of the inspursystems website
On June 18, 2019, we received an SPF vulnerability of the inspursystems website reported by external security officer sahil kataria. The relevant technical personnel confirmed that the vulnerability exists and…
Security Advisory – BMC ASPEED and some other security vulnerabilities
The ASPEED ast2400 and ast2500 Baseband Management Controller (BMC) hardware and firmware implement Advanced High-performance Bus (AHB) bridges, which allow arbitrary read and …
Security Notice – Statement on “VoltJockey” and other vulnerabilities of Intel processor
On December 10, 2019, Intel disclosed several potential security vulnerabilities. Intel processor vulnerabilities(CVE-2019-11157和CVE-2019-14607) may allow escalation of privilege…
Security Notice – Statement on Intel Processors Data Leakage Advisory (INTEL-SA-00329)
On January 27, 2020, intel released a security update that disclosed two security vulnerabilities of Intel processors that could lead to information disclosure. CVE numbers are CVE…
Security Notice – Statement On Ripple20 Vulnerabilities
The JSOF research lab has discovered a series of zero-day vulnerabilities in a widely used low-level TCP/IP software library developed by Treck, Inc. The 19 vulnerabilities, given …
Security Notice – Statement on Intel TSX Asynchronous Abort (TAA)
On November 12, 2019, Intel disclosed several potential security vulnerabilities. These potential security vulnerabilities may allow escalation of privilege, denial of service or i…
Security Advisory – The Side Channel Vulnerabilities "MDS" of Chips
On May 14, 2019, Intel disclosed four new side channel vulnerabilities (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091), Intel unified this series of vulnerabil…
Security Notice – Statement On some Vulnerabilities published in Intel 2021.1 IPU
On June 8th, Intel reported potential security vulnerabilities in some Intel Processors that may allow an authenticated user to potentially enable information disclosure or escalat…