Vulnerabilities > Huawei > Oceanstor 5600 V3 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2017-04-02 CVE-2016-8801 Command Injection vulnerability in Huawei Oceanstor 5600 V3 Firmware V300R003C00/V300R003C00C10
Huawei OceanStor 5600 V3 with V300R003C00C10 and earlier versions allows attackers with administrator privilege to inject a command into a specific command's parameters, and run this injected command with root privilege.
network
low complexity
huawei CWE-77
7.2
2017-04-02 CVE-2016-8754 Use of Hard-coded Credentials vulnerability in Huawei Oceanstor 5600 V3 Firmware V300R003C00
Huawei OceanStor 5600 V3 V300R003C00 has a hardcoded SSH key vulnerability; the hardcoded keys are used to encrypt communication data and authenticate different nodes of the devices.
high complexity
huawei CWE-798
7.5