CVE-2016-6827

Опубликовано: 26 сент. 2016

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

Huawei FusionCompute before V100R005C10CP7002 stores cleartext AES keys in a file, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

Ссылки

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160815-01-fusioncompute-en
Vendor Advisory
http://www.securityfocus.com/bid/92626
Third Party Advisory
VDB Entry
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160815-01-fusioncompute-en
Vendor Advisory
http://www.securityfocus.com/bid/92626
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:huawei:fusioncompute:*:*:*:*:*:*:*:*

Версия до v100r003c10 (включая)

EPSS

Процентиль: 30%

0.00112

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-5h6j-66w2-pcp6