Published: 27/04/2020 Updated: 21/07/2021

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Huawei OSD product with versions earlier than OSD_uwp_9.0.32.0 have a local privilege escalation vulnerability. An authenticated, local attacker can constructs a specific file path to exploit this vulnerability. Successful exploitation may cause the malicious user to obtain a higher privilege.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei osd_firmware

There is a local privilege escalation vulnerability in Huawei OSD product An authenticated, local attacker can constructs a specific file path to exploit this vulnerability Successful exploitation may cause the attacker to obtain a higher privilege (Vulnerability ID: HWPSIRT-2020-02153) This vulnerability has been assigned a Common Vulnerabiliti ...

NVD-CWE-noinfo https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-01-osd-en https://nvd.nist.gov https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-01-osd-en

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-9072

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect