CVE-2017-8196 |
|
发布时间 :2017-11-22 14:29:04 |
修订时间 :2017-12-08 13:06:52 |
NM |
|
|
[原文]FusionSphere V100R006C00SPC102(NFV) has an incorrect authorization vulnerability. An authenticated attacker could execute commands that he/she should have had no permission to perform, thereby querying, modifying, and deleting certain service data and making the service unavailable.
[CNNVD]CNNVD数据暂缺。
[机译]译文暂缺.
-
CVSS (基础分值)
CVSS分值: |
4.6 |
[中等(MEDIUM)] |
机密性影响: |
PARTIAL |
[很可能造成信息泄露] |
完整性影响: |
PARTIAL |
[可能会导致系统文件被修改] |
可用性影响: |
PARTIAL |
[可能会导致性能下降或中断资源访问] |
攻击复杂度: |
LOW |
[漏洞利用没有访问限制 ] |
攻击向量: |
LOCAL |
[漏洞利用需要具有物理访问权限或本地帐户] |
身份认证: |
NONE |
[漏洞利用无需身份认证] |
-
CWE (弱点类目)
-
CPE (受影响的平台与产品)
-
OVAL (用于检测的技术细节)
-
官方数据库链接
-
其它链接及资源