High severity8.8NVD Advisory· Published Nov 22, 2017· Updated Jun 17, 2026
CVE-2017-8134
CVE-2017-8134
Description
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:o:huawei:fusionsphere_openstack:v100r006c00:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:huawei:fusionsphere_openstack:v100r006c00:*:*:*:*:*:*:*
- cpe:2.3:o:huawei:fusionsphere_openstack:v100r006c10:*:*:*:*:*:*:*
- Huawei Technologies Co., Ltd./FusionSphere OpenStackv5Range: V100R006C00 and V100R006C10
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.