CVE-2021-22311

Name of the Vulnerable Software and Affected Versions: ManageOne versions 8.0.0, 8.0.1

Description: The issue is related to an improper permission assignment in the Huawei ManageOne product. This is due to improper security hardening, allowing a process to run with higher privileges than intended. As a result, certain users may be able to perform operations with improper permissions.

Recommendations: For ManageOne versions 8.0.0 and 8.0.1, update to a version that includes proper security hardening to prevent the process from running with elevated privileges. At the moment, there is no information about a newer version that contains a fix for this vulnerability.