2 matches found
CVE-2017-17147
CVE-2017-17147 affects Huawei DP300 (V500R002C00) where the XML parser has an integer overflow due to missing input validation. An authenticated local attacker can craft specific XML files to the device, trigger parsing, and cause a Denial of Service. The issue is documented across multiple sourc...
Security Advisory - Multiple Vulnerabilities in XML Parser of Some Huawei Products
There are multiple buffer overflow vulnerabilities in some Huawei products due to the lack of validation. An authenticated local attacker can craft specific XML files to the affected products and parse this file, which result in DoS attacks or remote code execution on the device. Vulnerability ID...