CVE-2020-9100
First published: Mon Jul 06 2020(Updated: )
Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Hisuite | <10.1.0.500 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this DLL hijacking vulnerability?
The vulnerability ID for this DLL hijacking vulnerability is CVE-2020-9100.
What is the severity level of CVE-2020-9100?
The severity level of CVE-2020-9100 is high with a score of 7.8.
What is the affected software for CVE-2020-9100?
The affected software for CVE-2020-9100 is HiSuite earlier than version 10.1.0.500.
How does this vulnerability occur?
This vulnerability occurs due to the improper loading of a DLL file by HiSuite.
What can an attacker do with this vulnerability?
An attacker can load a DLL file of their choosing using this vulnerability.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei hisuite