ByteOS Network

CVE Vulnerability Details :

CVE-2017-15352

PUBLISHED

More Info Official Page

Assigner-huawei

Assigner Org ID-25ac1063-e409-4190-8079-24548c77ea2e

Published At-15 Feb, 2018 | 16:00

Updated At-05 Aug, 2024 | 19:57

▼CVE Numbering Authority (CNA)

Huawei OceanStor 2800 V3, V300R003C00, V300R003C20, OceanStor 5300 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5500 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5600 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5800 V3, V300R003C00, V300R003C10, V300R003C20 have an improper access control vulnerability. Due to incorrectly restrict access to a resource, an attacker with high privilege may exploit the vulnerability to query some information or send specific message to cause some service abnormal.

Affected Products

Vendor

Huawei Technologies Co., Ltd.

Product

OceanStor 2800 V3,OceanStor 5300 V3,OceanStor 5500 V3,OceanStor 5600 V3,OceanStor 5800 V3

Versions

Affected

OceanStor 2800 V3 ,V300R003C00 ,V300R003C20 ,OceanStor 5300 V3 ,V300R003C00 ,V300R003C10 ,V300R003C20 ,OceanStor 5500 V3 ,V300R003C00 ,V300R003C10 ,V300R003C20 ,OceanStor 5600 V3 ,V300R003C00 ,V300R003C10 ,V300R003C20 ,OceanStor 5800 V3 ,V300R003C00 ,V300R003C10 ,V300R003C20

Problem Types

Type	CWE ID	Description
text	N/A	Improper Access Control

References

Hyperlink	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171122-01-oceanstor-en	x_refsource_CONFIRM

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171122-01-oceanstor-en	x_refsource_CONFIRM x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References