PT-2017-9818 · Huawei · Huawei Fusionstorage
Published
2017-04-02
·
Updated
2017-04-05
·
CVE-2016-8803
CVSS v3.1
7.5
High
| Vector | AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Huawei FusionStorage version V100R003C30U1
Description
The issue concerns the maintenance module in Huawei FusionStorage, which allows attackers to create documents according to special rules. This can lead to obtaining the OS root privilege of FusionStorage.
Recommendations
For Huawei FusionStorage version V100R003C30U1, update to a version that includes a fix for this issue, as the current version allows attackers to gain OS root privilege through the maintenance module.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei Fusionstorage