CVE-2016-8803

Опубликовано: 02 апр. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 4.1

EPSS Низкий

Описание

The maintenance module in Huawei FusionStorage V100R003C30U1 allows attackers to create documents according to special rules to obtain the OS root privilege of FusionStorage.

Ссылки

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-fusionstorage-en
Vendor Advisory
http://www.securityfocus.com/bid/94507
Third Party Advisory
VDB Entry
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-fusionstorage-en
Vendor Advisory
http://www.securityfocus.com/bid/94507
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:huawei:fusionstorage:v100r003c30u1:*:*:*:*:*:*:*

EPSS

Процентиль: 9%

0.00031

Низкий

7.5 High

CVSS3

4.1 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-x8gm-vrxv-pfm9