CVE-2020-9199

Summary

B2368-22 V100R001C00;B2368-57 V100R001C00;B2368-66 V100R001C00 have a command injection vulnerability. An attacker with high privileges may exploit this vulnerability through some operations on the LAN. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject commands to the target device.

Affected Software

VendorProductVersion RangeStatus
n/aB2368-22;B2368-57;B2368-66V100R001C00affected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References