CVE-2016-2405

CVE-2016-2405 affects Huawei Policy Center software prior to V100R003C10SPC020. A remote authenticated attacker can escalate privileges by crafting a URL, obtaining admin rights and causing a denial of service (system crash). The vulnerability is described in Huawei PSIRT advisory HWPSIRT-2015-12...

Security Advisory - Privilege Escalation Vulnerability in Huawei Policy Center

Huawei Policy Center dynamically allocates network resources in a unified manner, enabling the network to provide services with more agility. Huawei Policy Center has a privilege escalation vulnerability. An attacker could log in to the device as a low-privilege user, craft a URL that contains...