PT-2018-8449 · Huawei · Huawei Fusionsphere Openstack

Published

2018-03-20

Updated

2019-10-03

CVE-2017-8187

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Huawei FusionSphere OpenStack version V100R006C00SPC102(NFV)

Description The issue is related to improper privilege restrictions, allowing an attacker with high privilege to obtain other users' certificates, which may lead to privilege escalation.

Recommendations For version V100R006C00SPC102(NFV), at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2017-8187

Affected Products

Huawei Fusionsphere Openstack

PT-2018-8449 · Huawei · Huawei Fusionsphere Openstack

CVE-2017-8187

Weakness Enumeration

Related Identifiers

Affected Products

References · 3