Lucene search
K

172 matches found

CVE
CVE
added 2017/12/22 5:0 p.m.54 views

CVE-2017-15321

Huawei FusionSphere OpenStack (FSO) on V100R006C000SPC102 (NFV) is affected by an information disclosure vulnerability caused by the default use of a low-version transport protocol, allowing an attacker to intercept transmitted packets. The CVE entry CVE-2017-15321 is documented with an impact of...

4.3CVSS4.1AI score0.00606EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/12/22 5:0 p.m.22 views

CVE-2017-15321

Huawei FusionSphere OpenStack V100R006C000SPC102 NFV has an information leak vulnerability due to the use of a low version transmission protocol by default. An attacker could intercept packets transferred by a target device. Successful exploit could cause an information leak...

4AI score0.00606EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/27 12:0 a.m.4 views

Huawei FusionSphere OpenStack GaussDB Buffer Overflow Vulnerability

Huawei FusionSphere OpenStack is a suite of cloud platform software for Huawei's FusionSphere cloud operating system in ICT scenarios.GaussDB is one of the databases. A buffer overflow vulnerability exists in GaussDB in Huawei FusionSphere OpenStack V100R005C10SPC705 and earlier versions. An...

8CVSS7.9AI score0.00515EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.12 views

CVE-2017-8197

FusionSphere V100R006C00SPC102NFV has a command injection vulnerability. An authenticated, remote attacker could craft packets with malicious strings and send them to a target device. Successful exploit could allow the attacker to launch a command injection attack and execute system commands...

9CVSS7.3AI score0.02041EPSS
Exploits0References1
OSV
OSV
added 2017/11/22 7:29 p.m.3 views

CVE-2017-8193

The FusionSphere OpenStack V100R006C00SPC102NFV has a command injection vulnerability. Due to the insufficient input validation on one port, an authenticated, local attacker may exploit the vulnerability to gain root privileges by sending message with malicious commands...

8CVSS5.8AI score0.00865EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.18 views

CVE-2017-8192

FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability. Due to improper authorization, an attacker with low privilege may exploit this vulnerability to obtain the operation authority of some specific directory, causing privilege escalation...

7.8CVSS7.6AI score0.00216EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.20 views

CVE-2017-8191

FusionSphere OpenStack V100R006C00SPC102NFVhas a week cryptographic algorithm vulnerability. Attackers may exploit the vulnerability to crack the cipher text and cause information leak on the transmission links...

5.9CVSS6AI score0.00597EPSS
Exploits0References2
NVD
NVD
added 2017/11/22 7:29 p.m.15 views

CVE-2017-8188

FusionSphere OpenStack V100R006C00SPC102NFVhas a command injection vulnerability. Due to lack of validation, an attacker with high privilege may inject malicious code into some module of the affected products, causing code execution...

7.2CVSS7.3AI score0.01681EPSS
Exploits0References1
OSV
OSV
added 2017/11/22 7:29 p.m.5 views

CVE-2017-8191

FusionSphere OpenStack V100R006C00SPC102NFVhas a week cryptographic algorithm vulnerability. Attackers may exploit the vulnerability to crack the cipher text and cause information leak on the transmission links...

5.9CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2017/11/22 7:29 p.m.2 views

CVE-2017-8198

FusionSphere V100R006C00SPC102NFV has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection attack and execute SQL...

7.2CVSS5.9AI score0.01052EPSS
Exploits0References1
OSV
OSV
added 2017/11/22 7:29 p.m.5 views

CVE-2017-8190

FusionSphere OpenStack V100R006C00SPC102NFVhas an improper verification of cryptographic signature vulnerability. The software does not verify the cryptographic signature. An attacker with high privilege may exploit this vulnerability to inject malicious software...

6.7CVSS5.8AI score0.0019EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.24 views

CVE-2017-8195

The FusionSphere OpenStack V100R006C00SPC102NFV has an improper authentication vulnerability. Due to improper authentication on one port, an authenticated, remote attacker may exploit the vulnerability to execute more operations by send a crafted rest message...

8.8CVSS8.9AI score0.01173EPSS
Exploits0References1
OSV
OSV
added 2017/11/22 7:29 p.m.3 views

CVE-2017-8192

FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability. Due to improper authorization, an attacker with low privilege may exploit this vulnerability to obtain the operation authority of some specific directory, causing privilege escalation...

7.8CVSS5.8AI score0.00216EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.22 views

CVE-2017-8194

The FusionSphere OpenStack V100R006C00SPC102NFV has an improper authentication vulnerability. Due to improper authentication on one port, an authenticated, remote attacker may exploit the vulnerability to execute more operations by send a crafted rest message...

8.8CVSS8.9AI score0.01209EPSS
Exploits0References2
NVD
NVD
added 2017/11/22 7:29 p.m.21 views

CVE-2017-8198

FusionSphere V100R006C00SPC102NFV has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection attack and execute SQL...

7.2CVSS7.4AI score0.01052EPSS
Exploits0References1
OSV
OSV
added 2017/11/22 7:29 p.m.3 views

CVE-2017-8196

FusionSphere V100R006C00SPC102NFV has an incorrect authorization vulnerability. An authenticated attacker could execute commands that he/she should have had no permission to perform, thereby querying, modifying, and deleting certain service data and making the service unavailable...

4.2CVSS5.9AI score0.0026EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.18 views

CVE-2017-8190

FusionSphere OpenStack V100R006C00SPC102NFVhas an improper verification of cryptographic signature vulnerability. The software does not verify the cryptographic signature. An attacker with high privilege may exploit this vulnerability to inject malicious software...

6.7CVSS6.5AI score0.0019EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.18 views

CVE-2017-8196

FusionSphere V100R006C00SPC102NFV has an incorrect authorization vulnerability. An authenticated attacker could execute commands that he/she should have had no permission to perform, thereby querying, modifying, and deleting certain service data and making the service unavailable...

4.6CVSS5.3AI score0.0026EPSS
Exploits0References1
OSV
OSV
added 2017/11/22 7:29 p.m.7 views

CVE-2017-8194

The FusionSphere OpenStack V100R006C00SPC102NFV has an improper authentication vulnerability. Due to improper authentication on one port, an authenticated, remote attacker may exploit the vulnerability to execute more operations by send a crafted rest message...

8.8CVSS5.9AI score0.01209EPSS
Exploits0References2
NVD
NVD
added 2017/11/22 7:29 p.m.18 views

CVE-2017-8193

The FusionSphere OpenStack V100R006C00SPC102NFV has a command injection vulnerability. Due to the insufficient input validation on one port, an authenticated, local attacker may exploit the vulnerability to gain root privileges by sending message with malicious commands...

8CVSS8.4AI score0.00865EPSS
Exploits0References1
Rows per page
Query Builder