CVE-2017-2720

Summary

FusionSphere OpenStack V100R006C00 has an information exposure vulnerability. The software uses hard-coded cryptographic key to encrypt messages between certain components, which significantly increases the possibility that encrypted data may be recovered and results in information exposure.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.FusionSphere OpenStackV100R006C00affected

Weaknesses

  • Information Exposure

ADP Enrichment

CVE Program Container

Additional References

References