Huawei Fusionsphere Openstack — known CVE vulnerabilities
Every CVE whose affected-product data names Huawei Fusionsphere Openstack, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (21)
CVE-2020-9079 — CVSS 8.8 (high): FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An…
CVE-2017-8195 — CVSS 8.8 (high): The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability. Due to improper authentication on one port…
CVE-2017-2718 — CVSS 8.8 (high): FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input…
CVE-2017-2719 — CVSS 8.8 (high): FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input…
CVE-2017-8194 — CVSS 8.8 (high): The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability. Due to improper authentication on one port…
CVE-2017-8131 — CVSS 8.8 (high): The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input…
CVE-2017-8132 — CVSS 8.8 (high): The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input…
CVE-2017-8134 — CVSS 8.8 (high): The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input…
CVE-2017-8135 — CVSS 8.8 (high): The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input…
CVE-2017-8193 — CVSS 8.0 (high): The FusionSphere OpenStack V100R006C00SPC102(NFV) has a command injection vulnerability. Due to the insufficient input validation on one…
CVE-2017-2714 — CVSS 8.0 (high): The GaussDB in FusionSphere OpenStack V100R005C10SPC705 and earlier versions has a buffer overflow vulnerability. An authenticated attacker…
CVE-2020-9225 — CVSS 7.8 (high): FusionSphere OpenStack 6.5.1 have an improper permissions management vulnerability. The software does not correctly perform a privilege…
CVE-2017-8192 — CVSS 7.8 (high): FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability. Due to improper authorization, an attacker with low…
CVE-2018-7977 — CVSS 7.5 (high): There is an information leakage vulnerability on several Huawei products. Due to insufficient communication protection for specific…
CVE-2017-8188 — CVSS 7.2 (high): FusionSphere OpenStack V100R006C00SPC102(NFV)has a command injection vulnerability. Due to lack of validation, an attacker with high…
CVE-2017-8190 — CVSS 6.7 (medium): FusionSphere OpenStack V100R006C00SPC102(NFV)has an improper verification of cryptographic signature vulnerability. The software does not…
CVE-2017-8189 — CVSS 6.0 (medium): FusionSphere OpenStack V100R006C00SPC102(NFV)has a path traversal vulnerability. Due to insufficient path validation, an attacker with high…
CVE-2017-8191 — CVSS 5.9 (medium): FusionSphere OpenStack V100R006C00SPC102(NFV)has a week cryptographic algorithm vulnerability. Attackers may exploit the vulnerability to…
CVE-2017-2720 — CVSS 5.3 (medium): FusionSphere OpenStack V100R006C00 has an information exposure vulnerability. The software uses hard-coded cryptographic key to encrypt…
CVE-2017-8168 — CVSS 4.3 (medium): FusionSphere OpenStack with software V100R006C00SPC102(NFV) and V100R006C10 have an information leak vulnerability. Due to an incorrect…
CVE-2017-15321 — CVSS 3.7 (low): Huawei FusionSphere OpenStack V100R006C000SPC102 (NFV) has an information leak vulnerability due to the use of a low version transmission…