Security Advisory - Privilege Escalation Vulnerability in Huawei LogCenter

2015-12-02T00:00:00
ID HUAWEI-SA-20151202-01-LOGCENTER
Type huawei
Reporter Huawei Technologies
Modified 2015-12-02T00:00:00

Description

Huawei LogCenter has a privilege escalation vulnerability. After login to the LogCenter, a low privileged attacker can tamper with requests using a tool and submit the request to the server for privilege escalation, affecting some system functions. (Vulnerability ID: HWPSIRT-2015-09020) Huawei has released software updates to fix this vulnerability. This advisory is available at the following link: http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-464243.htm