Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-9222

Опубликовано: 27 дек. 2024
Источник: nvd
CVSS3: 7
CVSS3: 7.8
EPSS Низкий

Описание

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. (Vulnerability ID: HWPSIRT-2020-05241)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9222.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:huawei:fusioncompute:6.3.0:*:*:*:*:*:*:*
cpe:2.3:a:huawei:fusioncompute:6.3.1:*:*:*:*:*:*:*
cpe:2.3:a:huawei:fusioncompute:6.5.0:*:*:*:*:*:*:*
cpe:2.3:a:huawei:fusioncompute:6.5.1:*:*:*:*:*:*:*
cpe:2.3:a:huawei:fusioncompute:8.0.0:-:*:*:*:*:*:*

EPSS

Процентиль: 1%
0.00012
Низкий

7 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-269
NVD-CWE-noinfo

Связанные уязвимости

github логотип

GHSA-jpj4-cc78-mvh2

CVSS3: 7
github
около 1 года назад

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. (Vulnerability ID: HWPSIRT-2020-05241) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9222.

EPSS

Процентиль: 1%
0.00012
Низкий

7 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-269
NVD-CWE-noinfo