Published: 17/02/2020 Updated: 19/02/2020

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei gaussdb 200 6.5.1

There is a path traversal vulnerability in Huawei GaussDB Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory Successful exploit may cause information leakage (Vulnerability ID: HWPSIRT-2019-10053) This vulnerability has been assigned a Common Vulnerabilities an ...

CWE-22 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200120-01-path-en https://nvd.nist.gov https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200120-01-path-en

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-1853

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect