Shodan
Vulnerabilities
Vulnerable Software
Huawei:  >> Fusionsphere Openstack  >> v100r006c10  Security Vulnerabilities
CVE-2017-8168
FusionSphere OpenStack with software V100R006C00SPC102(NFV) and V100R006C10 have an information leak vulnerability. Due to an incorrect configuration item, the information transmitted by a transmission channel is not encrypted. An attacker accessing the internal network may obtain sensitive information transmitted.
CVSS Score
4.3
EPSS Score
0.0
Published
2017-11-22
CVE-2017-8131
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.
CVSS Score
8.8
EPSS Score
0.003
Published
2017-11-22
CVE-2017-8132
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.
CVSS Score
8.8
EPSS Score
0.003
Published
2017-11-22
CVE-2017-8134
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.
CVSS Score
8.8
EPSS Score
0.003
Published
2017-11-22
CVE-2017-8135
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.
CVSS Score
8.8
EPSS Score
0.005
Published
2017-11-22
CVE-2017-2718
FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. An attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.
CVSS Score
8.8
EPSS Score
0.004
Published
2017-11-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved