Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-12616

Malware in sbrugna...

8.8CVSS8.6AI score0.01093EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12637

Malware in sbrugna...

8.8CVSS8.6AI score0.01144EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:41 p.m.8 views

CVE-2020-1790

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. The software constructs part of a command using external input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands...

8.8CVSS7.3AI score0.01093EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:0 p.m.10 views

CVE-2020-1853

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage...

6.5CVSS6.4AI score0.00725EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:16 p.m.8 views

CVE-2020-1811

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands...

8.8CVSS7.8AI score0.01144EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/02/19 12:0 a.m.44 views

Huawei GaussDB 200 OLAP 6.5.1 Multiple Vulnerabilities

Huawei GaussDB 200 is affected by multiple command injection and path traversal vulnerabilities. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public...

8.8CVSS0.4AI score0.01144EPSS
Exploits0References3
NVD
NVD
added 2020/02/18 3:15 a.m.19 views

CVE-2020-1790

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. The software constructs part of a command using external input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands...

8.8CVSS8.9AI score0.01093EPSS
Exploits0References1
Prion
Prion
added 2020/02/18 3:15 a.m.12 views

Command injection

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. The software constructs part of a command using external input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands...

6.5CVSS8.9AI score0.01093EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/02/18 2:7 a.m.15 views

CVE-2020-1790

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. The software constructs part of a command using external input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands...

8.9AI score0.01093EPSS
Exploits0References1
CVE
CVE
added 2020/02/18 2:7 a.m.90 views

CVE-2020-1790

The CVE-2020-1790 entry concerns Huawei GaussDB 200 OLAP (version 6.5.1). The root cause is command construction that incorporates external user input without sufficient validation, enabling possible command injection. Documented impact is execution of arbitrary commands on the affected system. E...

8.8CVSS8.8AI score0.01093EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/02/18 12:15 a.m.2 views

CVE-2020-1811

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands...

8.8CVSS7.5AI score0.01144EPSS
Exploits0References1
NVD
NVD
added 2020/02/18 12:15 a.m.13 views

CVE-2020-1811

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands...

8.8CVSS9.1AI score0.01144EPSS
Exploits0References1
Prion
Prion
added 2020/02/18 12:15 a.m.14 views

Command injection

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands...

6.5CVSS9AI score0.01144EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2020/02/18 12:0 a.m.2 views

Huawei GaussDB 200 Command Injection Vulnerability (CNVD-2020-13694)

Huawei GaussDB 200 is a distributed parallel relational database system developed by Huawei China based on the open source database Postgres-XC. A command injection vulnerability exists in GaussDB 200 version 6.5.1. An attacker can exploit this vulnerability to execute system commands...

8.8CVSS7.8AI score0.01093EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/02/17 11:28 p.m.13 views

CVE-2020-1811

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands...

9.1AI score0.01144EPSS
Exploits0References1
OSV
OSV
added 2020/02/17 9:15 p.m.1 views

CVE-2020-1853

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage...

6.5CVSS5.8AI score0.00725EPSS
Exploits0References1
NVD
NVD
added 2020/02/17 9:15 p.m.17 views

CVE-2020-1853

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage...

6.5CVSS6.3AI score0.00725EPSS
Exploits0References1
Prion
Prion
added 2020/02/17 9:15 p.m.16 views

Path traversal

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage...

4CVSS6.2AI score0.00725EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/02/17 8:55 p.m.15 views

CVE-2020-1853

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage...

6.9AI score0.00725EPSS
Exploits0References1
Huawei
Huawei
added 2020/01/22 12:0 a.m.59 views

Security Advisory - Command Injection Vulnerability in GaussDB 200

There is a command injection vulnerability in GaussDB 200. The software constructs part of a command using external input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands. Vulnerability ID:...

8.8CVSS8.8AI score0.01093EPSS
Exploits0Affected Software1
Rows per page
Query Builder