First published: Mon Jul 06 2020(Updated: )
Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Hisuite | <10.1.0.500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this DLL hijacking vulnerability is CVE-2020-9100.
The severity level of CVE-2020-9100 is high with a score of 7.8.
The affected software for CVE-2020-9100 is HiSuite earlier than version 10.1.0.500.
This vulnerability occurs due to the improper loading of a DLL file by HiSuite.
An attacker can load a DLL file of their choosing using this vulnerability.