CVE-2017-2738
CVE-2017-2738 affects Huawei’s VCM5010; versions earlier than V100R002C50SPC100 suffer two flaws: (1) authentication bypass due to improper authentication for web pages, enabling an unauthenticated attacker to bypass login via crafted HTTP requests, and (2) arbitrary file upload due to lack of fi...