Medium severity5.9NVD Advisory· Published Nov 22, 2017· Updated May 13, 2026

CVE-2017-8157

Description

OceanStor 5800 V3 with software V300R002C00 and V300R002C10, OceanStor 6900 V3 V300R001C00 has an information leakage vulnerability. Products use TLS1.0 to encrypt. Attackers can exploit TLS1.0's vulnerabilities to decrypt data to obtain sensitive information.

Affected products

Huawei/Oceanstor 5800 V3 Firmware2 versions
cpe:2.3:o:huawei:oceanstor_5800_v3_firmware:v300r002c00:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:huawei:oceanstor_5800_v3_firmware:v300r002c00:*:*:*:*:*:*:*
- cpe:2.3:o:huawei:oceanstor_5800_v3_firmware:v300r002c10:*:*:*:*:*:*:*
Huawei/Oceanstor 6900 V3 Firmware
cpe:2.3:o:huawei:oceanstor_6900_v3_firmware:v300r001c00:*:*:*:*:*:*:*
Huawei Technologies Co., Ltd./OceanStor 5800 V3, OceanStor 6900 V3v5
Range: OceanStor 5800 V3 with software V300R002C00 and V300R002C10, OceanStor 6900 V3 V300R001C00

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20170920-01-oceanstor-ennvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.384
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000