There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. (Vulnerability ID: HWPSIRT-2020-05241)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9222.

References

• https://nvd.nist.gov/vuln/detail/CVE-2020-9222
• https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200826-01-fc-en