FusionSphere OpenStack V100R006C00SPC102(NFV)has an improper verification of cryptographic signature vulnerability. The software does not verify the cryptographic signature. An attacker with high privilege may exploit this vulnerability to inject malicious software.
References
Link | Resource |
---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171018-01-fusionsphere-en | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: huawei
Published: 2017-11-15T00:00:00
Updated: 2017-11-22T18:57:01
Reserved: 2017-04-25T00:00:00
Link: CVE-2017-8190
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-11-22T19:29:04.630
Modified: 2017-12-08T19:04:42.180
Link: CVE-2017-8190
JSON object: View
Redhat Information
No data.
CWE