Huawei: >> Oceanstor Uds Security Vulnerabilities
Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to capture and change patch loading information resulting in the deletion of directory files and compromise of system functions when loading a patch.
CVSS Score
9.1
EPSS Score
0.003
Published
2019-03-13
The DeviceManager in Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to obtain sensitive information via a crafted UDS patch with JavaScript.
CVSS Score
7.5
EPSS Score
0.001
Published
2017-06-08
Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to execute arbitrary code with root privileges via a crafted UDS patch with shell scripts.
CVSS Score
8.8
EPSS Score
0.005
Published
2017-06-08
The XML interface in Huawei OceanStor UDS devices with software before V100R002C01SPC102 allows remote authenticated users to obtain sensitive information via a crafted XML document.
CVSS Score
5.0
EPSS Score
0.001
Published
2017-06-08