ID CVE-2020-9248
Summary Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify some input correctly and authorizes files with incorrect access. Attackers can exploit this vulnerability to launch privilege escalation attack. This can compromise normal service.
References
Vulnerable Configurations
  • cpe:2.3:a:huawei:fusioncompute:8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:huawei:fusioncompute:8.0.0:*:*:*:*:*:*:*
CVSS
Base: 4.6
Impact:
Exploitability:
CWE CWE-863
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
Last major update 31-07-2020 - 13:23
Published 31-07-2020 - 13:15
Last modified 04-08-2020 - 13:53
Back to Top