Vulnerabilities > Huawei > Fusionsphere Openstack > v100r006c00

DATE CVE VULNERABILITY TITLE RISK
2017-11-22 CVE-2017-8192 Incorrect Authorization vulnerability in Huawei Fusionsphere Openstack V100R006C00
FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability.
local
low complexity
huawei CWE-863
7.8
7.8
2017-11-22 CVE-2017-8135 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports.
low complexity
huawei CWE-77
8.8
8.8
2017-11-22 CVE-2017-8134 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports.
low complexity
huawei CWE-77
8.8
8.8
2017-11-22 CVE-2017-8132 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports.
low complexity
huawei CWE-77
8.8
8.8
2017-11-22 CVE-2017-8131 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports.
low complexity
huawei CWE-77
8.8
8.8
2017-11-22 CVE-2017-2720 Use of Hard-coded Credentials vulnerability in Huawei Fusionsphere Openstack V100R006C00
FusionSphere OpenStack V100R006C00 has an information exposure vulnerability.
network
low complexity
huawei CWE-798
5.3
5.3
2017-11-22 CVE-2017-2719 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10Rc2
FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port.
low complexity
huawei CWE-77
8.8
8.8
2017-11-22 CVE-2017-2718 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port.
low complexity
huawei CWE-77
8.8
8.8