21 matches found
EUVD-2014-9503
Malware in sbrugna...
EUVD-2014-9504
Malware in sbrugna...
EUVD-2016-7783
Malware in sbrugna...
Huawei Tecal E9000 Chassis Hyper Module Management Elevation of Privilege Vulnerability
Tecal E9000 Chassis is a blade server from Huawei, China.Hyper Module Management HMM is one of the redundancy management module software. A security vulnerability exists in the HMM software in Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions. An attacker could exploit the...
Huawei Tecal E9000 Chassis Hyper Module Management Permission License Access Control Vulnerability
Huawei Tecal E9000 Chassis is a blade server from Huawei, China.Hyper Module Management HMM is one of the redundancy management module software. A security vulnerability exists in the HMM software in Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions. An attacker can exploit the...
Privilege escalation
The Hyper Module Management HMM software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions allows the operator to modify the user configuration of iMana through privilege escalation...
Design/Logic Flaw
The Hyper Module Management HMM software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions could allow a non-super-domain user who accesses HMM through SNMPv3 to perform operations on a server as a super-domain user...
CVE-2014-9696
The Hyper Module Management HMM software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions allows the operator to modify the user configuration of iMana through privilege escalation...
CVE-2014-9695
The Hyper Module Management HMM software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions could allow a non-super-domain user who accesses HMM through SNMPv3 to perform operations on a server as a super-domain user...
CVE-2014-9696
The Hyper Module Management HMM software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions allows the operator to modify the user configuration of iMana through privilege escalation...
CVE-2014-9695
The CVE-2014-9695 affects Huawei Tecal E9000 Chassis Hyper Module Management (HMM) software in V100R001C00SPC160 and earlier. Root cause: a design/permission flaw that lets a non-super-domain user accessing HMM via SNMPv3 perform operations as a super-domain user. Impact: privilege escalation wit...
CVE-2014-9696
The CVE-2014-9696 entry concerns Huawei Tecal E9000 Chassis HMM (Hyper Module Management) software. A privilege-escalation flaw in HMM (via IPMICommand) allows an operator to modify the iMana user configuration. Affected: HMM on Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier. Root cause...
CVE-2014-9695
The Hyper Module Management HMM software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions could allow a non-super-domain user who accesses HMM through SNMPv3 to perform operations on a server as a super-domain user...
CVE-2016-6898
XML external entity XXE vulnerability in the Hyper Management Module HMM in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service web service outage via a crafted XML document...
CVE-2016-6898
XML external entity XXE vulnerability in the Hyper Management Module HMM in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service web service outage via a crafted XML document...
Xxe
XML external entity XXE vulnerability in the Hyper Management Module HMM in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service web service outage via a crafted XML document...
CVE-2016-6898
XML external entity XXE vulnerability in the Hyper Management Module HMM in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service web service outage via a crafted XML document...
CVE-2016-6898
CVE-2016-6898 affects Huawei E9000 rack servers’ Hyper Management Module (HMM). A XML External Entity (XXE) vulnerability exists in user-supplied XML documents, allowing remote authenticated users to read arbitrary files or cause a web service denial of service. Impact is described as partial con...
Huawei E9000 Chassis XML External Entity Injection Vulnerability
The Huawei E9000 Chassis is a blade server from Huawei, a Chinese company. An XML external entity injection vulnerability exists in Huawei E9000 Chassis version V100R001C00. An attacker could exploit this vulnerability to obtain sensitive information and possibly cause a denial of service...
Security Advisory - XXE Vulnerability in the E9000
E9000 has an XML External Entity XXE vulnerability when parsing user-supplied XML documents in HMM Hyper Management Module. Attackers could exploit this vulnerability to read arbitrary files and cause a denial of the web service. Vulnerability ID: HWPSIRT-2016-05249 This vulnerability has been...