eCNS280 code issue vulnerability

Huawei eCNS280 is the core network equipment of Huawei’s wireless broadband trunking system in China. In addition to providing traditional core network functions, it also provides network elements with capacity configurations based on actual applications by virtualizing network element functions and sharing standardized hardware resources among multiple network elements to improve network expansion and reduction efficiency and enhance service uptime efficiency. eCNS280 suffers from a security vulnerability that originates in versions V100R005C00 and V100R005C10. The module does not perform strict operations on input XML messages. An attacker could use the vulnerability to send specific messages to exploit the vulnerability, resulting in a denial of service of the module.