Lucene search
K

171 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:40 p.m.10 views

CVE-2021-37105

There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious files to the device, resulting in the service abnormal...

7.5CVSS6.9AI score0.00636EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:3 p.m.8 views

CVE-2020-9233

FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...

9.1CVSS7.1AI score0.00775EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:3 p.m.9 views

CVE-2020-9246

FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...

6.5CVSS6.7AI score0.00607EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:53 p.m.10 views

CVE-2020-9229

FusionCompute 8.0.0 has an information disclosure vulnerability. Due to the properly protection of certain information, attackers may exploit this vulnerability to obtain certain information...

4.4CVSS6.4AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:53 p.m.10 views

CVE-2020-9228

FusionCompute 8.0.0 has an information disclosure vulnerability. Due to the properly protection of certain information, attackers may exploit this vulnerability to obtain certain information...

7.5CVSS6.4AI score0.00777EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:53 p.m.12 views

CVE-2020-9128

FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak...

4.4CVSS6.5AI score0.00112EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:53 p.m.8 views

CVE-2020-9078

FusionCompute 8.0.0 have local privilege escalation vulnerability. A local, authenticated attacker could perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service...

7.8CVSS6.8AI score0.00219EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:44 p.m.10 views

CVE-2020-9242

FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...

8.8CVSS7.2AI score0.01306EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:43 p.m.15 views

CVE-2020-9116

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege...

7.2CVSS7.4AI score0.01023EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:43 p.m.8 views

CVE-2020-9114

FusionCompute versions 6.3.0, 6.3.1, 6.5.0, 6.5.1 and 8.0.0 have a privilege escalation vulnerability. Due to improper privilege management, an attacker with common privilege may access some specific files and get the administrator privilege in the affected products. Successful exploit will cause...

7.8CVSS7.1AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:5 p.m.10 views

CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...

7.8CVSS6.8AI score0.00111EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 10:15 a.m.3 views

CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...

7.8CVSS5.7AI score0.00111EPSS
Exploits0References1
NVD
NVD
added 2024/12/27 10:15 a.m.33 views

CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...

7.8CVSS0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/27 9:50 a.m.29 views

CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...

7CVSS0.00111EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/27 9:50 a.m.8 views

CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...

7CVSS7AI score0.00111EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.4 views

PT-2024-10867 · Huawei · Fusioncompute

Name of the Vulnerable Software and Affected Versions: Huawei product affected versions not specified FusionCompute version 8.0.0.SPC1 and earlier Description: There is an improper interface design vulnerability in a Huawei product. A module interface of the affected product does not handle some...

8.8CVSS6.9AI score0.0041EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.4 views

PT-2024-10866 · Huawei · Huawei Fusioncompute

Name of the Vulnerable Software and Affected Versions: Huawei FusionCompute affected versions not specified Description: There is a privilege escalation issue in the Huawei FusionCompute product. This is due to insufficient verification on specific files that need to be deserialized, allowing loc...

7.8CVSS7AI score0.00111EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.7 views

The vulnerability of the CMA module in the FusionCompute virtualization software allows a hacker to execute arbitrary commands.

The vulnerability of the CMA module in FusionCompute virtualization software exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS7.5AI score0.00898EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2021/11/23 4:15 p.m.28 views

CVE-2021-37102

There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful...

9CVSS0.00946EPSS
Exploits0References1
OSV
OSV
added 2021/11/23 4:15 p.m.6 views

CVE-2021-37102

There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful...

8.8CVSS5.8AI score0.00946EPSS
Exploits0References1
Rows per page
Query Builder