Huawei Video Content Management (VCM) before V100R001C10SPC001 does not properly "authenticate online user identities and privileges," which allows remote authenticated users to gain privileges and perform a case operation as another user via a crafted message, aka "Horizontal Privilege Escalation Vulnerability."
References
Link | Resource |
---|---|
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-462985.htm | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-08-28T21:00:00
Updated: 2017-08-28T20:57:01
Reserved: 2015-11-24T00:00:00
Link: CVE-2015-8332
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-08-28T21:29:00.247
Modified: 2017-09-08T02:25:59.367
Link: CVE-2015-8332
JSON object: View
Redhat Information
No data.
CWE