CVE-2017-8195

CWE-287Improper Authentication3 documents3 sources
Severity
8.8HIGH
EPSS
0.3%
top 46.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei Technologies Co., Ltd. Fusionsphere OpenstackHuawei Fusionsphere Openstack
Timeline
PublishedNov 22
Latest updateMay 17

Description

The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability. Due to improper authentication on one port, an authenticated, remote attacker may exploit the vulnerability to execute more operations by send a crafted rest message.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

NVDhuawei/fusionsphere_openstackv100r006c00spc102\(nfv\)

🔴Vulnerability Details

2
GHSA
GHSA-6h4q-p2hp-mmhq: The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability2022-05-17
CVEList
CVE-2017-8195: The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability2017-11-22
CVE-2017-8195 (HIGH CVSS 8.8) | The FusionSphere OpenStack V100R006 | cvebase.io