Vulnerabilities > CVE-2020-9222 - Unspecified vulnerability in Huawei Fusioncompute

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

huawei

NVD

Published: 2024-12-27

Updated: 2025-01-15

Summary

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. (Vulnerability ID: HWPSIRT-2020-05241) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9222.

Vulnerable Configurations

Part	Description	Count
Application	Huawei Huawei Fusioncompute 6.5.1 Huawei Fusioncompute 6.3.1 Huawei Fusioncompute 6.3.0 Huawei Fusioncompute 6.5.0 Huawei Fusioncompute 8.0.0	5

References

https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200826-01-fc-en