CVE-2020-1811

Summary

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands.

Affected Software

VendorProductVersion RangeStatus
HuaweiGaussDB 2006.5.1affected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References