The HWTACACS modules of some Huawei CloudEngine series switches have vulnerabilities. Attackers can execute the commands that can be used by users with higher-level permissions by bypass the right check of HWTACACS server. (HWPSIRT-2013-1256).
This Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2014-1688.