Skip to main content

Hitachi

Server and Client Products Vulnerability Information

Vulnerability "Logjam Attack" in the TLS protocol for HA8000

Update: February 15, 2016

Overview

HA8000 has vulnerability in the TLS protocol.

Reference

1. Product

No. Machine Model Name Version Note
1 HA8000/RS440xKxK1xLxL1xL2 GQ*44**L-*******
GQ*44**K-*******		 All TLS protocol in BMC may allow
man-in-the-middle attackers to
conduct cipher-downgrade attacks.
2 HA8000/RS440xM GQ*440AM-******* BMC
01.45 or less		 Same as above

2. Avoidance

Please intercept the management network from an external network.

3. Solution

(1)
HA8000/RS440xKxK1xLxL1xL2
Please do the avoidance method.
(2)
HA8000/RS440xM
Please contact the product support and get the measures version for BMC firmware.
BMC firmware version 01.47

4. Change History

February 15, 2016 : This security information page is made newly, sent.

July 7, 2015 : This security information page is made newly, sent.