Huawei Video Content Management (VCM) before V100R001C10SPC001 does not properly "authenticate online user identities and privileges," which allows remote authenticated users to gain privileges and perform a case operation as another user via a crafted message, aka "Horizontal Privilege Escalation Vulnerability."
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-08-28T21:00:00

Updated: 2024-08-06T08:13:32.551Z

Reserved: 2015-11-24T00:00:00

Link: CVE-2015-8332

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2017-08-28T21:29:00.247

Modified: 2017-09-08T02:25:59.367

Link: CVE-2015-8332

cve-icon Redhat

No data.