CVE-2020-9137 in CloudEngine 12800info

Summary

by MITRE • 12/25/2020

There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800. Due to insufficient input validation, a local attacker with high privilege may execute some specially crafted scripts in the affected products. Successful exploit will cause privilege escalation.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Disclosure

12/25/2020

Moderation

accepted

Entry

VDB-166805

CPE

ready

CWE

CWE-264 (confirmed)

CVSS

5.3 (VulDB)

EPSS

0.00213

KEV

Activities

very low

Sector

Telecommunication, Education, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-9137
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-9137
CVE Details	https://www.cvedetails.com/cve/CVE-2020-9137/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!