Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2017-15352
Analyzed
More InfoOfficial Page
Source-psirt@huawei.com
View Known Exploited Vulnerability (KEV) details
Published At-15 Feb, 2018 | 16:29
Updated At-03 Oct, 2019 | 00:03

Huawei OceanStor 2800 V3, V300R003C00, V300R003C20, OceanStor 5300 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5500 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5600 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5800 V3, V300R003C00, V300R003C10, V300R003C20 have an improper access control vulnerability. Due to incorrectly restrict access to a resource, an attacker with high privilege may exploit the vulnerability to query some information or send specific message to cause some service abnormal.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.03.1LOW
CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:L
Primary2.02.9LOW
AV:A/AC:H/Au:S/C:P/I:N/A:P
CPE Matches
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_2800_firmware>>v300r003c00
cpe:2.3:o:huawei:oceanstor_2800_firmware:v300r003c00:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_2800_firmware>>v300r003c20
cpe:2.3:o:huawei:oceanstor_2800_firmware:v300r003c20:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_2800>>-
cpe:2.3:h:huawei:oceanstor_2800:-:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5300_firmware>>v300r003c00
cpe:2.3:o:huawei:oceanstor_5300_firmware:v300r003c00:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5300_firmware>>v300r003c10
cpe:2.3:o:huawei:oceanstor_5300_firmware:v300r003c10:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5300_firmware>>v300r003c20
cpe:2.3:o:huawei:oceanstor_5300_firmware:v300r003c20:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5300>>-
cpe:2.3:h:huawei:oceanstor_5300:-:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5500_firmware>>v300r003c00
cpe:2.3:o:huawei:oceanstor_5500_firmware:v300r003c00:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5500_firmware>>v300r003c10
cpe:2.3:o:huawei:oceanstor_5500_firmware:v300r003c10:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5500_firmware>>v300r003c20
cpe:2.3:o:huawei:oceanstor_5500_firmware:v300r003c20:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5500>>-
cpe:2.3:h:huawei:oceanstor_5500:-:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5600_firmware>>v300r003c00
cpe:2.3:o:huawei:oceanstor_5600_firmware:v300r003c00:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5600_firmware>>v300r003c10
cpe:2.3:o:huawei:oceanstor_5600_firmware:v300r003c10:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5600_firmware>>v300r003c20
cpe:2.3:o:huawei:oceanstor_5600_firmware:v300r003c20:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5600>>-
cpe:2.3:h:huawei:oceanstor_5600:-:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5800_firmware>>v300r003c00
cpe:2.3:o:huawei:oceanstor_5800_firmware:v300r003c00:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5800_firmware>>v300r003c10
cpe:2.3:o:huawei:oceanstor_5800_firmware:v300r003c10:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5800_firmware>>v300r003c20
cpe:2.3:o:huawei:oceanstor_5800_firmware:v300r003c20:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd.
huawei
>>oceanstor_5800>>-
cpe:2.3:h:huawei:oceanstor_5800:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-732Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171122-01-oceanstor-enpsirt@huawei.com
Vendor Advisory
Change History
0Changes found
Details not found