Design/Logic Flaw

2018-03-0917:29:00

PRIOn knowledge base

www.prio-n.com

4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.4%

JSON

Huawei video applications HiCinema with software of 8.0.3.308; 8.0.4.300 have a permission control vulnerability. Due to improper verification of specific interface, an attacker who is on the same network with the user can obtain some information through a man-in-the-middle attack.

CPENameOperatorVersion
hicinemaeq8.0.3.308
hicinemaeq8.0.4.300

CPE	Name	Operator	Version
	hicinema	eq	8.0.3.308
	hicinema	eq	8.0.4.300

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20180307-01-hicinema-en