CVE-2017-8187

HIGH

Huawei FusionSphere OpenStack V100R006C00SPC102(NFV) - Privilege Escalation via Certificate Access

Title source: llm

Description

Huawei FusionSphere OpenStack V100R006C00SPC102(NFV) has a privilege escalation vulnerability. Due to improper privilege restrictions, an attacker with high privilege may obtain the other users' certificates. Successful exploit may cause privilege escalation.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171018-01-fusionsphere-en

Scores

CVSS v3 7.2

EPSS 0.0008

EPSS Percentile 23.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-269

Status published

Products (1)

huawei/fusionsphere_openstack_firmware v100r006c00spc102\(nfv\)

Published Mar 20, 2018

Tracked Since Feb 18, 2026