Vulnerabilities (CVE)

Filtered by vendor Huawei Subscribe

Filtered by product Gaussdb 200

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-1790	1 Huawei	1 Gaussdb 200	2021-07-21	6.5 MEDIUM	8.8 HIGH
GaussDB 200 with version of 6.5.1 have a command injection vulnerability. The software constructs part of a command using external input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands.
CVE-2020-1811	1 Huawei	1 Gaussdb 200	2021-07-21	6.5 MEDIUM	8.8 HIGH
GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands.