Fusioncompute@8.0.0 Security Vulnerabilities and Issues — Fusioncompute@8.0.0 CVE List

Lucene search

HuaweiFusioncompute8.0.0

4 matches found

CVE•added 2021/11/23 4:15 p.m.•43 views

CVE-2021-37102

There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful explo...

9CVSS8.8AI score0.00738EPSS

CVE•added 2021/05/27 1:15 p.m.•42 views

CVE-2021-22358

There is an insufficient input validation vulnerability in FusionCompute 8.0.0. Due to the input validation is insufficient, an attacker can exploit this vulnerability to upload any files to the device. Successful exploit may cause the service abnormal.

4.3CVSS4.6AI score0.00169EPSS

CVE•added 2021/09/28 3:15 p.m.•39 views

CVE-2021-37105

There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious files to the device, resulting in the service abnormal.

7.5CVSS7.5AI score0.00182EPSS

CVE•added 2021/09/28 3:15 p.m.•31 views

CVE-2021-37106

There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user i...

9CVSS7.1AI score0.00479EPSS