CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege...

7.2CVSS7.4AI score0.01468EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 3:5 p.m.•4 views

CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. Vulnerability ID: HWPSIRT-2020-05241 This vulnerability has been...

7.8CVSS6.8AI score0.00045EPSS

Exploits0References1

OSV•added 2024/12/27 10:15 a.m.•0 views

CVE-2020-9222

7.8CVSS5.7AI score

Exploits0References1

NVD•added 2024/12/27 10:15 a.m.•14 views

CVE-2020-9222

7.8CVSS0.00045EPSS

Exploits0References1

Vulnrichment•added 2024/12/27 9:50 a.m.•7 views

CVE-2020-9222

7CVSS7AI score0.00045EPSS

Exploits0References1

Cvelist•added 2024/12/27 9:50 a.m.•14 views

CVE-2020-9222

7CVSS0.00045EPSS

Exploits0References1

Positive Technologies•added 2024/12/27 12:0 a.m.•1 views

PT-2024-10866 · Huawei · Huawei Fusioncompute

Name of the Vulnerable Software and Affected Versions: Huawei FusionCompute affected versions not specified Description: There is a privilege escalation issue in the Huawei FusionCompute product. This is due to insufficient verification on specific files that need to be deserialized, allowing loc...

7.8CVSS7AI score0.00045EPSS

Exploits0References6

CNNVD•added 2021/10/11 12:0 a.m.•1 views

Huawei FusionCompute 命令注入漏洞

Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, etc. A command injection vulnerability exists in the Huawei FusionCompute product, which stems from incorrect input validation in the CMA servi...

9CVSS8.4AI score0.00643EPSS

Exploits0References4

CNVD•added 2021/09/24 12:0 a.m.•6 views

Huawei FusionCompute Incorrect File Upload Control Vulnerability

Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, among others. A security vulnerability exists in Huawei FusionCompute, which stems from the application improperly validating uploaded files...

7.5CVSS6.9AI score0.00182EPSS

Exploits0References1

Huawei•added 2021/09/22 12:0 a.m.•30 views

Security Advisory - Improper File Upload Control Vulnerability in Huawei FusionCompute Product

There is an improper file upload control vulnerability in Huwei FusionCompute product. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious files to the device, resulting in the service abnormal. Vulnerability...

7.5CVSS7.5AI score0.00182EPSS

Exploits0Affected Software1

Huawei•added 2021/09/22 12:0 a.m.•37 views

Security Advisory - Command Injection Vulnerability in Huawei FusionCompute Product

There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful...

9CVSS8.9AI score0.00643EPSS

Exploits0Affected Software1

CNNVD•added 2021/09/22 12:0 a.m.•1 views

Huawei FusionCompute 命令注入漏洞

Huawei FusionCompute is a computer virtualization engine from Huawei China. A command injection vulnerability exists in the CMA service of the Huawei FusionCompute product, which provides Virtual Resource Manager VRM and Compute Node Agent CNA. The vulnerability stems from the fact that special...

9CVSS7.1AI score0.00531EPSS

Exploits0References4

CNNVD•added 2021/05/06 12:0 a.m.•1 views

Huawei FusionCompute 输入验证错误漏洞

Huawei FusionCompute is a computer virtualization engine from Huawei China. The product provides Virtual Resource Manager VRM and Compute Node Agent CNA, among others. An input validation error vulnerability exists in Huawei FusionCompute version 8.0.0. The vulnerability stems from inadequate inp...

4.3CVSS5.8AI score0.00169EPSS

Exploits0References3

OSV•added 2020/12/01 12:15 a.m.•1 views

CVE-2020-9116

7.2CVSS5.8AI score

Exploits0References1

NVD•added 2020/12/01 12:15 a.m.•17 views

CVE-2020-9116

7.2CVSS7.1AI score0.01468EPSS

Exploits0References1