CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-8332

Huawei Video Content Management (VCM) before V100R001C10SPC001 does not properly "authenticate online user identities and privileges," which allows remote authenticated users to gain privileges and perform a case operation as another user via a crafted message, aka "Horizontal Privilege Escalation Vulnerability."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.8%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-462985.htm
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-462985.htm

Products affected by CVE-2015-8332

Huawei » Vcm5010 » Version: N/A

cpe:2.3:h:huawei:vcm5010:-
Huawei » Vcm5020 » Version: N/A

cpe:2.3:h:huawei:vcm5020:-
Huawei » Vcm5010 Firmware » Version: v100r001c10b010

cpe:2.3:o:huawei:vcm5010_firmware:v100r001c10b010
Huawei » Vcm5020 Firmware » Version: v100r001c10b010

cpe:2.3:o:huawei:vcm5020_firmware:v100r001c10b010

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8332

Products

Pricing

Contact Us