Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Fusionsphere Security Vulnerabilities - February

cve
cve

CVE-2017-8196

FusionSphere V100R006C00SPC102(NFV) has an incorrect authorization vulnerability. An authenticated attacker could execute commands that he/she should have had no permission to perform, thereby querying, modifying, and deleting certain service data and making the service unavailable.

4.2CVSS

4.7AI Score

0.0004EPSS

2017-11-22 07:29 PM
27
cve
cve

CVE-2017-8197

FusionSphere V100R006C00SPC102(NFV) has a command injection vulnerability. An authenticated, remote attacker could craft packets with malicious strings and send them to a target device. Successful exploit could allow the attacker to launch a command injection attack and execute system commands.

7.2CVSS

7.3AI Score

0.002EPSS

2017-11-22 07:29 PM
22
cve
cve

CVE-2017-8198

FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection attack and execute SQL ...

7.2CVSS

7.4AI Score

0.001EPSS

2017-11-22 07:29 PM
26
cve
cve

CVE-2021-22299

There is a local privilege escalation vulnerability in some Huawei products. A local, authenticated attacker could craft specific commands to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege. Affected product versions include: ManageOne version...

7.8CVSS

7.5AI Score

0.0004EPSS

2021-02-06 02:15 AM
67
2