Information disclosure

2017-11-2219:29:00

PRIOn knowledge base

www.prio-n.com

4.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.6%

JSON

FusionSphere OpenStack with software V100R006C00SPC102(NFV) and V100R006C10 have an information leak vulnerability. Due to an incorrect configuration item, the information transmitted by a transmission channel is not encrypted. An attacker accessing the internal network may obtain sensitive information transmitted.

CPENameOperatorVersion
fusionsphere_openstackeq100r6c0spc102nf-v
fusionsphere_openstackeq100r6c10-v

CPE	Name	Operator	Version
	fusionsphere_openstack	eq	100r6c0spc102nf-v
	fusionsphere_openstack	eq	100r6c10-v

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20171025-01-openstack-en