Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. (Vulnerability ID: HWPSIRT-2020-05241) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9222.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
特权管理不恰当
Vulnerability Title
华为 FusionCompute 安全漏洞
Vulnerability Description
Huawei FusionCompute是中国华为(Huawei)公司的一款计算机虚拟化引擎。该产品提供虚拟资源管理器(VRM)和计算节点代理(CNA)等。 华为FusionCompute部分产品存在验证不充分漏洞。攻击者可以物理访问设备,并利用此漏洞篡改设备信息。成功利用该漏洞可能导致业务异常。
CVSS Information
N/A
Vulnerability Type
N/A