Описание
HUAWEI Mate 20 versions earlier than 10.1.0.163(C00E160R3P8) have a JavaScript injection vulnerability. A module does not verify a specific input. This could allow attackers to bypass filter mechanism to launch JavaScript injection. This could compromise normal service of the affected module.
Уязвимые конфигурации
Конфигурация 1Версия до 10.1.0.163\(c00e160r3p8\) (исключая)
Одновременно
cpe:2.3:o:huawei:mate_20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:mate_20:-:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.0006
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
больше 3 лет назад
HUAWEI Mate 20 versions earlier than 10.1.0.163(C00E160R3P8) have a JavaScript injection vulnerability. A module does not verify a specific input. This could allow attackers to bypass filter mechanism to launch JavaScript injection. This could compromise normal service of the affected module.
EPSS
Процентиль: 19%
0.0006
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-79