Arbitrary file deletion

2017-11-2219:29:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.2%

JSON

HedEx Earlier than V200R006C00 versions has an arbitrary file download vulnerability. An attacker could exploit it to download arbitrary files on a target device to cause information leak.

CPENameOperatorVersion
hedex_liteeq< v200r6c0

CPE	Name	Operator	Version
	hedex_lite	eq	< v200r6c0

References

www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20170531-01-hedex-en