N/A

There is an improper permission assignment vulnerability in Huawei ManageOne product. Due to improper security hardening, the process can run with a higher privilege. Successful exploit could allow certain users to do certain operations with improper permissions. Affected product versions include: ManageOne versions 8.0.0, 8.0.1.

N/A

N/A

Huawei Manageone 授权问题漏洞

Huawei Manageone是中国华为（Huawei）公司的一套云数据中心管理解决方案。该产品支持异构云资源池统一管理，并提供多级VDC匹配客户组织模型、服务目录规划、自助服务、集中告警分析和智能运维等功能。 华为ManageOne 存在授权问题漏洞，该漏洞源于存在一个权限分配不合理的漏洞。攻击者可利用该漏洞可以以不合理权限执行某些操作。

N/A

N/A