2 matches found
CVE-2017-17146
CVE-2017-17146 affects Huawei DP300 V500R002C00. The vulnerability is a buffer overflow in the XML parser caused by insufficient input validation. An authenticated local attacker can craft specific XML payloads to the device, which may lead to DoS or remote code execution. The issue is documented...
Security Advisory - Multiple Vulnerabilities in XML Parser of Some Huawei Products
There are multiple buffer overflow vulnerabilities in some Huawei products due to the lack of validation. An authenticated local attacker can craft specific XML files to the affected products and parse this file, which result in DoS attacks or remote code execution on the device. Vulnerability ID...