2 matches found
CVE-2017-15308
CVE-2017-15308 concerns the Huawei iReader app prior to 8.0.2.301, with an input-validation vulnerability on the URL used to load network data. The issue allows an attacker to control app access and load malicious websites, causing the code in loaded webpages to run. The CVE is confirmed in Huawe...
Security Advisory - Multiple Security Vulnerabilities in Huawei iReader
Huawei iReader app has three security vulnerabilities. The app has an input validation vulnerability due to insufficient validation on the URL used for loading network data. An attacker can control app access and load malicious websites created by the attacker, and the code in webpages would be...