CVE-2017-8190

Name of the Vulnerable Software and Affected Versions FusionSphere OpenStack version V100R006C00SPC102(NFV)

Description The issue is related to an improper verification of cryptographic signature. Specifically, the software fails to verify the cryptographic signature, which could allow an attacker with high privilege to inject malicious software.

Recommendations For version V100R006C00SPC102(NFV), ensure that proper verification of cryptographic signatures is implemented to prevent malicious software injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.