Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fusioncompute vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2021-37102
There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user inpu...
Huawei Fusioncompute 6.0.0
Huawei Fusioncompute 6.3.0
Huawei Fusioncompute 6.3.1
Huawei Fusioncompute 6.5.0
Huawei Fusioncompute 6.5.1
Huawei Fusioncompute 8.0.0
7.2
CVSSv2
CVE-2020-9114
FusionCompute versions 6.3.0, 6.3.1, 6.5.0, 6.5.1 and 8.0.0 have a privilege escalation vulnerability. Due to improper privilege management, an attacker with common privilege may access some specific files and get the administrator privilege in the affected products. Successful e...
Huawei Fusioncompute 6.3.0
Huawei Fusioncompute 6.3.1
Huawei Fusioncompute 6.5.0
Huawei Fusioncompute 6.5.1
Huawei Fusioncompute 8.0.0
9
CVSSv2
CVE-2021-37106
There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently ...
Huawei Fusioncompute 8.0.0
Huawei Fusioncompute 6.3.1
Huawei Fusioncompute 6.3.0
Huawei Fusioncompute 6.5.0
4.3
CVSSv2
CVE-2021-37105
There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious files to the device, resulting in the servic...
Huawei Fusioncompute 6.5.0
Huawei Fusioncompute 6.5.1
Huawei Fusioncompute 8.0.0
4.9
CVSSv2
CVE-2017-8158
FusionCompute V100R005C00 and V100R005C10 have an improper authorization vulnerability due to improper permission settings for a certain file on the host machine. An authenticated attacker could create a large number of virtual machine (VM) processes to exhaust system resources. ...
Huawei Fusioncompute V100r005c00
Huawei Fusioncompute V100r005c10
6.5
CVSSv2
CVE-2020-9116
Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the malicious users to obtain highe...
Huawei Fusioncompute 6.5.1
Huawei Fusioncompute 8.0.0
4
CVSSv2
CVE-2016-6827
Huawei FusionCompute before V100R005C10CP7002 stores cleartext AES keys in a file, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
Huawei Fusioncompute
6.8
CVSSv2
CVE-2016-4057
Huawei FusionCompute before V100R005C10SPC700 allows remote authenticated users to cause a denial of service (resource consumption) via a large number of crafted packets.
Huawei Fusioncompute
4.6
CVSSv2
CVE-2020-9248
Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify some input correctly and authorizes files with incorrect access. Attackers can exploit this vulnerability to launch privilege escalation attack. This can compromise normal service.
Huawei Fusioncompute 8.0.0
4.6
CVSSv2
CVE-2020-9078
FusionCompute 8.0.0 have local privilege escalation vulnerability. A local, authenticated attacker could perform specific operations to exploit this vulnerability. Successful exploitation may cause the malicious user to obtain a higher privilege and compromise the service.
Huawei Fusioncompute 8.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »