1. Home
  2. CVE Database
  3. CVE-2020-9102
LOW · 3.3

CVE-2020-9102

There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attac...

Vulnerability Description

There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attacker with the ability to access the device and cause the username information leak. Affected product versions include: CloudEngine 12800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800; CloudEngine 5800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800; CloudEngine 6800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800

CVSS Score

3.3

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
HuaweiCloudengine 12800 Firmwarev200r002c50spc800
HuaweiCloudengine 12800-
HuaweiCloudengine 5800 Firmwarev200r002c50spc800
HuaweiCloudengine 5800-
HuaweiCloudengine 6800 Firmwarev200r002c50spc800
HuaweiCloudengine 6800-
HuaweiCloudengine 7800 Firmwarev200r002c50spc800
HuaweiCloudengine 7800-

References

FAQ

What is CVE-2020-9102?

CVE-2020-9102 is a vulnerability with a CVSS score of 3.3 (LOW). There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attac...

How severe is CVE-2020-9102?

CVE-2020-9102 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-9102?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Cloudengine 12800 Firmware, Huawei Cloudengine 12800, Huawei Cloudengine 5800 Firmware, Huawei Cloudengine 5800, Huawei Cloudengine 6800 Firmware.