Huawei: >> Oceanstor 5600 V3 Security Vulnerabilities
Huawei OceanStor 5600 V3 V300R003C00 has a hardcoded SSH key vulnerability; the hardcoded keys are used to encrypt communication data and authenticate different nodes of the devices. An attacker may obtain the hardcoded keys and log in to such a device through SSH.
CVSS Score
7.5
EPSS Score
0.001
Published
2017-04-02
Huawei OceanStor 5600 V3 with V300R003C00C10 and earlier versions allows attackers with administrator privilege to inject a command into a specific command's parameters, and run this injected command with root privilege.
CVSS Score
7.2
EPSS Score
0.002
Published
2017-04-02