173 matches found
CVE-2020-9128
CVE-2020-9128 affects Huawei FusionCompute 8.0.0, where an insecure encryption algorithm leads to partial information disclosure. Exploitation is described for attackers with elevated permissions, enabling information leak rather than full compromise. The Red Hat, CNVD, NVD and other feeds corrob...
Security Advisory - Privilege Escalation Vulnerability in Huawei FusionCompute Product
There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...
CVE-2020-9246
FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...
CVE-2020-9246
FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...
Design/Logic Flaw
FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...
CVE-2020-9246
CVE-2020-9246 affects Huawei FusionCompute 8.0.0. It is an information-disclosure vulnerability caused by a module not enforcing strict access control and information protection, allowing low-privilege attackers to obtain additional information. Public references (NVD, Red Hat, CNVD, Prio) corrob...
CVE-2020-9246
FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak...
Huawei FusionCompute Information Disclosure Vulnerability (CNVD-2020-47548)
Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, among others. An information disclosure vulnerability exists in Huawei FusionCompute version 8.0.0, which stems from the module's failure to...
Security Advisory - Information Leak Vulnerability in Huawei Products
There is an information leak vulnerability in Huawei FusionCompute. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak. Vulnerability ID: HWPSIRT-2020-05037 This vulnerability ha...
Huawei FusionCompute License Issue Vulnerability (CNVD-2020-49547)
Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, among others. A security vulnerability exists in Huawei FusionCompute version 8.0.0 that stems from insufficient authentication. An attacker...
CVE-2020-9233
FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...
CVE-2020-9233
FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...
Authentication flaw
FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...
CVE-2020-9242
FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...
CVE-2020-9242
FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...
Command injection
FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...
CVE-2020-9233
FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal...
CVE-2020-9233
CVE-2020-9233 affects Huawei FusionCompute 8.0.0. The vulnerability is described as an insufficient authentication flaw that could enable an attacker to delete files and cause services to behave abnormally. The CVSS metrics in the public entry indicate high impact (CRITICAL in CVSS 3.1: 9.1) with...
CVE-2020-9242
The CVE-2020-9242 issue affects Huawei FusionCompute 8.0.0, where a command injection vulnerability exists due to insufficient validation of certain user-supplied parameters. The likely impact is that an authenticated attacker could execute arbitrary commands on affected systems. Huawei’s securit...
CVE-2020-9242
FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack...