Lucene search
China National Vulnerability DatabaseCNVD-2021-84882HistorySep 24, 2021 - 12:00 a.m.
Huawei FusionCompute Command Injection Vulnerability (CNVD-2021-84882)
2021-09-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
huawei
fusioncompute
command injection
cma service
virtual resource manager
compute node agent
certificate files
security vulnerability
EPSS
0.001
Percentile
47.2%
Huawei FusionCompute is a computer virtualization engine from Huawei (China). A command injection vulnerability exists in the CMA service of the Huawei FusionCompute product, which provides Virtual Resource Manager (VRM) and Compute Node Agent (CNA). The vulnerability stems from the fact that special characters are not effectively filtered and can be exploited by attackers to perform command injection when processing certificate files in certain scenarios.
Related
nvd
nvd
CVE-2021-37106
2021-09-28 15:15:07
prion
prion
Command injection
2021-09-28 15:15:00
cvelist
cvelist
CVE-2021-37106
2021-09-28 14:02:38
huawei
huawei
cve
cve
CVE-2021-37106
2021-09-28 15:15:07