CVE-2017-8198

Summary

FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection attack and execute SQL commands.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.FusionSphereV100R006C00SPC102(NFV)affected

Weaknesses

  • SQL injection

ADP Enrichment

CVE Program Container

Additional References

References