CVE-2020-9248
First published: Fri Jul 31 2020(Updated: )
Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify some input correctly and authorizes files with incorrect access. Attackers can exploit this vulnerability to launch privilege escalation attack. This can compromise normal service.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei FusionCompute | =8.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Huawei FusionComput vulnerability?
The vulnerability ID is CVE-2020-9248.
What is the severity level of CVE-2020-9248?
The severity level of CVE-2020-9248 is medium.
How does the vulnerability CVE-2020-9248 impact Huawei FusionComput 8.0.0?
The vulnerability allows attackers to launch privilege escalation attacks, compromising normal service.
How can the vulnerability CVE-2020-9248 be exploited?
Attackers can exploit the vulnerability by manipulating and authorizing files with incorrect access.
Is there a fix available for CVE-2020-9248?
For information on how to fix CVE-2020-9248, please refer to the official Huawei security advisory: [https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-fc-en](https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-fc-en)
- collector/nvd-index
- vendor/huawei
- canonical/huawei fusioncompute
- version/huawei fusioncompute/8.0.0