Описание
Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:huawei:fusioncompute:6.5.1:*:*:*:*:*:*:*
cpe:2.3:a:huawei:fusioncompute:8.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01468
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-77
Связанные уязвимости
github
больше 3 лет назад
Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege.
EPSS
Процентиль: 81%
0.01468
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-77