Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2020-9207

🗓️ 29 Dec 2020 17:57:18Reported by huaweiType 
cve
 cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 51 Views

There's an improper authentication vulnerability in Huawei CloudEngine, allowing attackers to craft malicious files for bypassing verification, compromising service

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
CNNVD		Multiple Huawei products licensing issues vulnerabilities
16 Dec 202000:00
cnnvd
Cvelist		CVE-2020-9207
29 Dec 202017:57
cvelist
EUVD		EUVD-2020-30036
7 Oct 202500:30
euvd
Huawei		Security Advisory - Improper Authentication Vulnerability in Huawei Product
16 Dec 202000:00
huawei
NVD		CVE-2020-9207
29 Dec 202018:15
nvd
OpenVAS		Improper Authentication Vulnerability in Huawei Product (huawei-sa-20201216-01-vrp)
21 Dec 202300:00
openvas
Prion		Authentication flaw
29 Dec 202018:15
prion
RedhatCVE		CVE-2020-9207
22 May 202516:53
redhatcve
NVD
Vulners
Node
huaweicloudengine_12800_firmwareMatchv200r019c00spc800
AND
huaweicloudengine_12800Match-
Node
huaweicloudengine_5800_firmwareMatchv200r019c00spc800
AND
huaweicloudengine_5800Match-
Node
huaweicloudengine_6800_firmwareMatchv200r005c20spc800
OR
huaweicloudengine_6800_firmwareMatchv200r019c00spc800
AND
huaweicloudengine_6800Match-
Node
huaweicloudengine_7800_firmwareMatchv200r019c00spc800
AND
huaweicloudengine_7800Match-
[
  {
    "product": "CloudEngine 12800",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V200R019C00SPC800"
      }
    ]
  },
  {
    "product": "CloudEngine 5800",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V200R019C00SPC800"
      }
    ]
  },
  {
    "product": "CloudEngine 6800",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V200R005C20SPC800"
      },
      {
        "status": "affected",
        "version": "V200R019C00SPC800"
      }
    ]
  },
  {
    "product": "CloudEngine 7800",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "V200R019C00SPC800"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 05:40Current
7.7High risk
Vulners AI Score7.7
CVSS 26.8
CVSS 3.17.8
EPSS0.00083
CWE-287
huawei cloudenginecve-2020-9207improper authenticationvulnerabilitymalicious filesverification mechanism
51