CVE-2020-1853

Summary

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage.

Affected Software

VendorProductVersion RangeStatus
HuaweiGaussDB 2006.5.1affected

Weaknesses

  • Path Traversal

ADP Enrichment

CVE Program Container

Additional References

References