CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-37036
https://notcve.org/view.php?id=CVE-2021-37036
23 Nov 2021 — There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280_TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the information leak. Se presenta una vulnerabilidad de filtrado de información en FusionCompute versiones 6.5.1, eCNS280_TD V100R005C00 y V100R005C10. Debido al almacenamiento inapropiado de información específica en el archiv... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210818-01-informationleak-en • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2015-8336
https://notcve.org/view.php?id=CVE-2015-8336
14 Apr 2016 — Huawei FusionCompute with software before V100R005C10SPC700 allows remote authenticated users to obtain sensitive "role and permission" information via unspecified vectors. Huawei FusionCompute con software en versiones anteriores a V100R005C10SPC700 permite a usuarios remotos autenticados obtener información "role and permission" sensible a través de vectores no especificados. • http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-462904.htm • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-264: Permissions, Privileges, and Access Controls •