CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
EPSS
Percentile
41.0%
Huawei has noticed the buffer overflow vulnerability in the floppy disk controller (FDC) of QEMU disclosed by open source organization Xen. This vulnerability allows an attacker to escape out of the virtual machine, execute code on the physical host with full privilege. (Vulnerability ID: HWPSIRT-2015-05025)
This Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2015-3456.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | fusioncompute_firmware | * | cpe:2.3:o:huawei:fusioncompute_firmware:*:*:*:*:*:*:*:* |
huawei | fusionsphere_openstack_firmware | * | cpe:2.3:o:huawei:fusionsphere_openstack_firmware:*:*:*:*:*:*:*:* |