CVE-2020-1817

CWE-269Improper Privilege Management3 documents3 sources
Severity
7.8HIGH
EPSS
0.0%
top 94.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Pcmanager
Timeline
PublishedApr 30
Latest updateMay 24

Description

Huawei PCManager with versions earlier than 10.0.1.36 has a privilege escalation vulnerability. Due to improper permission management of specific files, local attackers with low permissions can inject commands to exploit this vulnerability. Successful exploit may cause privilege escalation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDhuawei/pcmanager< 10.0.1.36
CVEListV5pcmanagerVersions earlier than 10.0.1.36

🔴Vulnerability Details

2
GHSA
GHSA-prg8-f8c5-v3hj: Huawei PCManager with versions earlier than 102022-05-24
CVEList
CVE-2020-1817: Huawei PCManager with versions earlier than 102020-04-30
CVE-2020-1817 (HIGH CVSS 7.8) | Huawei PCManager with versions earl | cvebase.io