exploitDog

GHSA-fq2r-565r-rw92

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.6

Описание

XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.

XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.

Ссылки

EPSS

Процентиль: 24%

0.00083

Низкий

6.6 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2016-6898

CVSS3: 6.6

nvd

больше 9 лет назад

XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.

EPSS

Процентиль: 24%

0.00083

Низкий

6.6 Medium

CVSS3

CVE ID

Дефекты

CWE-284