Описание
There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280_TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the information leak.
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:huawei:ecns280_td_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:ecns280_td_firmware:v100r005c10:*:*:*:*:*:*:*
cpe:2.3:h:huawei:ecns280_td:-:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:huawei:fusioncompute:6.5.1:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00028
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-532
Связанные уязвимости
CVSS3: 5.5
github
около 4 лет назад
There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280_TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the information leak.
EPSS
Процентиль: 8%
0.00028
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-532