Lucene search
K

172 matches found

Prion
Prion
added 2020/12/01 1:15 a.m.20 views

Privilege escalation

FusionCompute versions 6.3.0, 6.3.1, 6.5.0, 6.5.1 and 8.0.0 have a privilege escalation vulnerability. Due to improper privilege management, an attacker with common privilege may access some specific files and get the administrator privilege in the affected products. Successful exploit will cause...

7.2CVSS7.7AI score0.00216EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/12/01 12:15 a.m.4 views

CVE-2020-9116

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege...

7.2CVSS5.8AI score0.01023EPSS
Exploits0References1
NVD
NVD
added 2020/12/01 12:15 a.m.34 views

CVE-2020-9116

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege...

7.2CVSS7.1AI score0.01023EPSS
Exploits0References1
Prion
Prion
added 2020/12/01 12:15 a.m.19 views

Command injection

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege...

6.5CVSS7AI score0.01023EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/12/01 12:4 a.m.76 views

CVE-2020-9114

CVE-2020-9114 affects Huawei FusionCompute: versions 6.3.0, 6.3.1, 6.5.0, 6.5.1 and 8.0.0 contain a privilege escalation vulnerability caused by improper privilege management. An attacker with common privileges can access certain files and obtain administrator privileges, leading to full compromi...

7.8CVSS7.7AI score0.00216EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/01 12:4 a.m.20 views

CVE-2020-9114

FusionCompute versions 6.3.0, 6.3.1, 6.5.0, 6.5.1 and 8.0.0 have a privilege escalation vulnerability. Due to improper privilege management, an attacker with common privilege may access some specific files and get the administrator privilege in the affected products. Successful exploit will cause...

7.8AI score0.00216EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/01 12:0 a.m.5 views

Huawei FusionCompute Command Injection Vulnerability (CNVD-2020-68551)

FusionCompute is Huawei's self-developed computing virtualization software. A command injection vulnerability exists in FusionCompute 6.5.1, 8.0.0. The vulnerability stems from insufficient authentication. An attacker can exploit the vulnerability to gain higher privileges via a specially crafted...

7.2CVSS7.9AI score0.01023EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/01 12:0 a.m.3 views

Huawei FusionCompute Elevation of Privilege Vulnerability

FusionCompute is Huawei's self-developed computing virtualization software. An elevation of privilege vulnerability exists in FusionCompute 6.3.0, 6.3.1, 6.5.0, 6.5.1, 8.0.0. The vulnerability stems from improper privilege management. An attacker with normal privileges could exploit the...

7.8CVSS7.3AI score0.00216EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/11/30 11:53 p.m.33 views

CVE-2020-9116

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege...

7.1AI score0.01023EPSS
Exploits0References1
CVE
CVE
added 2020/11/30 11:53 p.m.80 views

CVE-2020-9116

Huawei FusionCompute targets 6.5.1 and 8.0.0 and contains a command injection vulnerability. The issue arises from insufficient verification, allowing an authenticated, remote attacker to craft a request and potentially obtain higher privileges. Affected software is Huawei FusionCompute; remediat...

7.2CVSS7.1AI score0.01023EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2020/11/30 12:0 a.m.7 views

Huawei FusionCompute 命令注入漏洞

FusionCompute is Huawei's self-developed computing virtualization software. A command injection vulnerability exists in FusionCompute 6.5.1, 8.0.0. The vulnerability stems from insufficient authentication. An attacker can exploit the vulnerability to gain higher privileges via a specially crafted...

7.2CVSS7.1AI score0.01023EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/11/30 12:0 a.m.9 views

Huawei FusionCompute 权限许可和访问控制问题漏洞

FusionCompute is Huawei's self-developed computing virtualization software. An elevation of privilege vulnerability exists in FusionCompute 6.3.0, 6.3.1, 6.5.0, 6.5.1, 8.0.0. The vulnerability stems from improper privilege management. An attacker with normal privileges could exploit the...

7.8CVSS7.1AI score0.00216EPSS
Exploits0References2
CNVD
CNVD
added 2020/11/19 12:0 a.m.2 views

Huawei FusionCompute Encryption Issue Vulnerability

Huawei FusionCompute is a software for virtualization support from Huawei, a Chinese company. The software is a virtualization engine that provides virtualization support for cloud hosts. A security vulnerability exists in FusionCompute version 8.0.0, which can be exploited by an attacker with...

4.4CVSS6.4AI score0.00112EPSS
Exploits0References1
Huawei
Huawei
added 2020/11/18 12:0 a.m.33 views

Security Advisory - Command Injection Vulnerability in Huawei FusionCompute Product

There is a command injection vulnerability in Huawei FusionCompute product. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege. Vulnerability ID:...

7.2CVSS7AI score0.01023EPSS
Exploits0Affected Software1
Huawei
Huawei
added 2020/11/18 12:0 a.m.39 views

Security Advisory - Privilege Escalation Vulnerability in FusionCompute Product

There is a privilege escalation vulnerability in FusionCompute product. Due to improper privilege management, an attacker with common privilege may access some specific files and get the administrator privilege in the affected products. Successful exploit will cause privilege escalation...

7.8CVSS7.8AI score0.00216EPSS
Exploits0Affected Software1
OSV
OSV
added 2020/11/12 2:15 p.m.3 views

CVE-2020-9128

FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak...

4.4CVSS5.8AI score0.00112EPSS
Exploits0References1
NVD
NVD
added 2020/11/12 2:15 p.m.26 views

CVE-2020-9128

FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak...

4.4CVSS4.5AI score0.00112EPSS
Exploits0References1
Prion
Prion
added 2020/11/12 2:15 p.m.21 views

Design/Logic Flaw

FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak...

2.1CVSS4.5AI score0.00112EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/11/12 1:50 p.m.26 views

CVE-2020-9128

FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak...

4.5AI score0.00112EPSS
Exploits0References1
CVE
CVE
added 2020/11/12 1:50 p.m.55 views

CVE-2020-9128

CVE-2020-9128 affects Huawei FusionCompute 8.0.0, where an insecure encryption algorithm leads to partial information disclosure. Exploitation is described for attackers with elevated permissions, enabling information leak rather than full compromise. The Red Hat, CNVD, NVD and other feeds corrob...

4.4CVSS4.6AI score0.00112EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder