CVE-2015-8336 β€” Sensitive Information Exposure in Huawei Fusioncompute

CWE-200 β€” Sensitive Information ExposureCWE-2643 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.1%
top 66.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Fusioncompute
Timeline
PublishedApr 14
Latest updateMay 17

Description

Huawei FusionCompute with software before V100R005C10SPC700 allows remote authenticated users to obtain sensitive "role and permission" information via unspecified vectors.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

β–ΆNVDhuawei/fusioncomputev100r003c00, v100r003c10+1

πŸ”΄Vulnerability Details

2
GHSA
GHSA-46f4-rvf3-67hv: Huawei FusionCompute with software before V100R005C10SPC700 allows remote authenticated users to obtain sensitive "role and permission" information vi↗2022-05-17
β–Ά
CVEList
CVE-2015-8336: Huawei FusionCompute with software before V100R005C10SPC700 allows remote authenticated users to obtain sensitive "role and permission" information vi↗2016-04-14
β–Ά
CVE-2015-8336 β€” Sensitive Information Exposure | cvebase