CVE-2021-22358Improper Input Validation in Huawei Fusioncompute

CWE-20Improper Input Validation3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 61.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Fusioncompute
Timeline
PublishedMay 27
Latest updateMay 24

Description

There is an insufficient input validation vulnerability in FusionCompute 8.0.0. Due to the input validation is insufficient, an attacker can exploit this vulnerability to upload any files to the device. Successful exploit may cause the service abnormal.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:LExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5huawei/fusioncompute8.0.0

🔴Vulnerability Details

2
GHSA
GHSA-wm9w-3fvv-87q8: There is an insufficient input validation vulnerability in FusionCompute 82022-05-24
CVEList
CVE-2021-22358: There is an insufficient input validation vulnerability in FusionCompute 82021-05-27
CVE-2021-22358 — Improper Input Validation in Huawei | cvebase