CVE-2017-8193

Name of the Vulnerable Software and Affected Versions FusionSphere OpenStack version V100R006C00SPC102(NFV)

Description The issue is related to a command injection vulnerability due to insufficient input validation on one port. An authenticated, local attacker may exploit this to gain root privileges by sending a message with malicious commands.

Recommendations For version V100R006C00SPC102(NFV), consider restricting access to the vulnerable port to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.