4 matches found
CVE-2016-6898
XML external entity XXE vulnerability in the Hyper Management Module HMM in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service web service outage via a crafted XML document...
CVE-2016-6898
XML external entity XXE vulnerability in the Hyper Management Module HMM in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service web service outage via a crafted XML document...
CVE-2016-6898
CVE-2016-6898 affects Huawei E9000 rack servers’ Hyper Management Module (HMM). A XML External Entity (XXE) vulnerability exists in user-supplied XML documents, allowing remote authenticated users to read arbitrary files or cause a web service denial of service. Impact is described as partial con...
Security Advisory - XXE Vulnerability in the E9000
E9000 has an XML External Entity XXE vulnerability when parsing user-supplied XML documents in HMM Hyper Management Module. Attackers could exploit this vulnerability to read arbitrary files and cause a denial of the web service. Vulnerability ID: HWPSIRT-2016-05249 This vulnerability has been...