CVE-2015-8336

MEDIUM

Huawei FusionCompute <V100R005C10SPC700 - Info Disclosure

Title source: llm

Description

Huawei FusionCompute with software before V100R005C10SPC700 allows remote authenticated users to obtain sensitive "role and permission" information via unspecified vectors.

References (1)

[Vendor Advisory] http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-462904.htm

Scores

CVSS v3 4.3

EPSS 0.0014

EPSS Percentile 33.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Classification

CWE

CWE-200 CWE-264

Status draft

Affected Products (2)

huawei/fusioncompute

Timeline

Published Apr 14, 2016

Tracked Since Feb 18, 2026