CVE-2016-8779

Huawei FusionAccess with software V100R005C10 and V100R005C20 could allow remote attackers with specific permission to inject a Lightweight Directory Access Protocol LDAP operation command into a specific input variable to obtain sensitive information from the database...

CVE-2016-8779

CVE-2016-8779 affects Huawei FusionAccess (software versions V100R005C10 and V100R005C20). A lack of input validation allows remote attackers with specific permissions to inject LDAP operations into a particular input variable, enabling access to sensitive information from the database. The vulne...

Security Advisory - Command Injection Vulnerability in Huawei FusionAccess

There is a command injection vulnerability in Huawei FusionAccess due to the lack of input validation. A remote attacker with specific permission could inject an Lightweight Directory Access ProtocolLDAP operation command into a specific input variable to obtain sensitive information from the...