Unknown
CVE-2020-1861
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2020-1861
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
CloudEngine 12800 with versions of V200R001C00SPC600,V200R001C00SPC700,V200R002C01,V200R002C50SPC800,V200R002C50SPC800PWE,V200R003C00SPC810,V200R003C00SPC810PWE,V200R005C00SPC600,V200R005C00SPC800,V200R005C00SPC800PWE,V200R005C10,V200R005C10SPC300 have an information leakage vulnerability in some Huawei products. In some special cases, an authenticated attacker can exploit this vulnerability because the software processes data improperly. Successful exploitation may lead to information leakage.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- cloudengine 12800 firmware v200r001c00spc600,
- cloudengine 12800 firmware v200r001c00spc700,
- cloudengine 12800 firmware v200r002c01,
- cloudengine 12800 firmware v200r002c50spc800,
- cloudengine 12800 firmware v200r002c50spc800pwe,
- cloudengine 12800 firmware v200r003c00spc810,
- cloudengine 12800 firmware v200r003c00spc810pwe,
- cloudengine 12800 firmware v200r005c00spc600,
- cloudengine 12800 firmware v200r005c00spc800,
- cloudengine 12800 firmware v200r005c00spc800pwe,
- cloudengine 12800 firmware v200r005c10,
- cloudengine 12800 firmware v200r005c10spc300
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
