CVE-2017-8192
First published: Wed Nov 22 2017(Updated: )
FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability. Due to improper authorization, an attacker with low privilege may exploit this vulnerability to obtain the operation authority of some specific directory, causing privilege escalation.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei FusionSphere OpenStack | =v100r006c00 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2017-8192.
What is the severity of CVE-2017-8192?
CVE-2017-8192 has a severity value of 7.8 (high).
What software versions are affected by CVE-2017-8192?
CVE-2017-8192 affects Huawei FusionSphere OpenStack V100R006C00.
What is the impact of CVE-2017-8192?
CVE-2017-8192 allows an attacker with low privilege to obtain the operation authority of specific directories, resulting in privilege escalation.
Is there a fix for CVE-2017-8192?
To fix CVE-2017-8192, it is recommended to update to a patched version provided by Huawei.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei fusionsphere openstack
- version/huawei fusionsphere openstack/v100r006c00