Lucene search
+L

173 matches found

CVE
CVE
added 2020/11/12 1:50 p.m.55 views

CVE-2020-9128

CVE-2020-9128 affects Huawei FusionCompute 8.0.0, where an insecure encryption algorithm leads to partial information disclosure. Exploitation is described for attackers with elevated permissions, enabling information leak rather than full compromise. The Red Hat, CNVD, NVD and other feeds corrob...

4.4CVSS4.6AI score0.00112EPSS
Exploits0References1Affected Software1
Huawei
Huawei
added 2020/08/26 12:0 a.m.35 views

Security Advisory - Privilege Escalation Vulnerability in Huawei FusionCompute Product

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...

7.8CVSS6.4AI score0.00111EPSS
Exploits0Affected Software1
OSV
OSV
added 2020/08/21 2:15 p.m.5 views

CVE-2020-9246

FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...

6.5CVSS6.6AI score0.00607EPSS
Exploits0References1
NVD
NVD
added 2020/08/21 2:15 p.m.26 views

CVE-2020-9246

FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...

6.5CVSS6.4AI score0.00607EPSS
Exploits0References1
Prion
Prion
added 2020/08/21 2:15 p.m.19 views

Design/Logic Flaw

FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...

4CVSS6.3AI score0.00607EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/08/21 1:33 p.m.56 views

CVE-2020-9246

CVE-2020-9246 affects Huawei FusionCompute 8.0.0. It is an information-disclosure vulnerability caused by a module not enforcing strict access control and information protection, allowing low-privilege attackers to obtain additional information. Public references (NVD, Red Hat, CNVD, Prio) corrob...

6.5CVSS6.3AI score0.00607EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/08/21 1:33 p.m.22 views

CVE-2020-9246

FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...

6.4AI score0.00607EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/20 12:0 a.m.5 views

Huawei FusionCompute Information Disclosure Vulnerability (CNVD-2020-47548)

Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, among others. An information disclosure vulnerability exists in Huawei FusionCompute version 8.0.0, which stems from the module's failure to...

6.5CVSS6.3AI score0.00607EPSS
Exploits0References1
Huawei
Huawei
added 2020/08/19 12:0 a.m.23 views

Security Advisory - Information Leak Vulnerability in Huawei Products

There is an information leak vulnerability in Huawei FusionCompute. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak. Vulnerability ID: HWPSIRT-2020-05037 This vulnerability ha...

6.5CVSS6.3AI score0.00607EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2020/08/18 12:0 a.m.6 views

Huawei FusionCompute License Issue Vulnerability (CNVD-2020-49547)

Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, among others. A security vulnerability exists in Huawei FusionCompute version 8.0.0 that stems from insufficient authentication. An attacker...

9.1CVSS6.7AI score0.00775EPSS
Exploits0References1
OSV
OSV
added 2020/08/17 4:15 p.m.3 views

CVE-2020-9233

FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...

9.1CVSS7.3AI score0.00775EPSS
Exploits0References1
NVD
NVD
added 2020/08/17 4:15 p.m.27 views

CVE-2020-9233

FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...

9.1CVSS9.4AI score0.00775EPSS
Exploits0References1
Prion
Prion
added 2020/08/17 4:15 p.m.18 views

Authentication flaw

FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...

6.4CVSS9.2AI score0.00775EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/08/17 3:15 p.m.5 views

CVE-2020-9242

FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...

8.8CVSS5.8AI score0.01306EPSS
Exploits0References1
NVD
NVD
added 2020/08/17 3:15 p.m.18 views

CVE-2020-9242

FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...

8.8CVSS8.9AI score0.01306EPSS
Exploits0References1
Prion
Prion
added 2020/08/17 3:15 p.m.15 views

Command injection

FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...

6.5CVSS8.8AI score0.01306EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/08/17 3:11 p.m.23 views

CVE-2020-9233

FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...

9.3AI score0.00775EPSS
Exploits0References1
CVE
CVE
added 2020/08/17 3:11 p.m.54 views

CVE-2020-9233

CVE-2020-9233 affects Huawei FusionCompute 8.0.0. The vulnerability is described as an insufficient authentication flaw that could enable an attacker to delete files and cause services to behave abnormally. The CVSS metrics in the public entry indicate high impact (CRITICAL in CVSS 3.1: 9.1) with...

9.1CVSS9.2AI score0.00775EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/08/17 2:52 p.m.63 views

CVE-2020-9242

The CVE-2020-9242 issue affects Huawei FusionCompute 8.0.0, where a command injection vulnerability exists due to insufficient validation of certain user-supplied parameters. The likely impact is that an authenticated attacker could execute arbitrary commands on affected systems. Huawei’s securit...

8.8CVSS8.7AI score0.01306EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/08/17 2:52 p.m.24 views

CVE-2020-9242

FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...

8.8AI score0.01306EPSS
Exploits0References1
Rows per page
Query Builder