GCVE - cpe:2.3:a:n/a:fusioncompute:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:fusioncompute:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Fusioncompute (`e755590d-a47f-54f1-a12d-47be7902e9e5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-37106`	vulnerable	2026-06-08 05:32:53.258837	Details available There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands to the system. Published: 2021-09-28T14:02:38.000Z Updated: 2024-08-04T01:09:07.770Z Open on db.gcve.eu Reference links https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210922-01-commandinjection-en	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-37105`	vulnerable	2026-06-08 05:32:53.258211	Details available There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious files to the device, resulting in the service abnormal. Published: 2021-09-28T14:03:53.000Z Updated: 2024-08-04T01:09:07.698Z Open on db.gcve.eu Reference links https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210922-01-upload-en	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-37102`	vulnerable	2026-06-08 05:32:53.247590	Details available There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands to the system. Affected product versions include: FusionCompute 6.0.0, 6.3.0, 6.3.1, 6.5.0, 6.5.1, 8.0.0. Published: 2021-11-23T15:02:39.000Z Updated: 2024-08-04T01:09:07.882Z Open on db.gcve.eu Reference links https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210922-01-cmd-en	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-22358`	vulnerable	2026-06-08 05:30:00.492080	Details available There is an insufficient input validation vulnerability in FusionCompute 8.0.0. Due to the input validation is insufficient, an attacker can exploit this vulnerability to upload any files to the device. Successful exploit may cause the service abnormal. Published: 2021-05-27T12:33:19.000Z Updated: 2024-08-03T18:37:18.523Z Open on db.gcve.eu Reference links https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210506-01-inputvalidate-en	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9248`	vulnerable	2026-06-08 05:27:21.022958	Details available Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify some input correctly and authorizes files with incorrect access. Attackers can exploit this vulnerability to launch privilege escalation attack. This can compromise normal service. Published: 2020-07-31T12:24:25.000Z Updated: 2024-08-04T10:19:20.113Z Open on db.gcve.eu Reference links https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-fc-en	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9246`	vulnerable	2026-06-08 05:27:21.007320	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9242`	vulnerable	2026-06-08 05:27:20.995318	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9233`	vulnerable	2026-06-08 05:27:20.961666	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9229`	vulnerable	2026-06-08 05:27:20.958933	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9228`	vulnerable	2026-06-08 05:27:20.958618	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9128`	vulnerable	2026-06-08 05:27:20.831697	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9116`	vulnerable	2026-06-08 05:27:20.788642	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9114`	vulnerable	2026-06-08 05:27:20.778314	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-9078`	vulnerable	2026-06-08 05:27:20.614014	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.