2 matches found
CVE-2018-7937
Affected products are Huawei HiRouter-CD20-10 and WS5200-10, with versions before 1.9.6. The issue is a plug-in signature bypass caused by insufficient plug-in verification, enabling an attacker to tamper with a legitimate plug-in to install a malicious one. Successful exploit could grant root ac...
Security Advisory - Plug-in Signature Bypass Vulnerability in Some Huawei Products
There is a plug-in signature bypass vulnerability in some Huawei products due to insufficient plug-in verification. An attacker may tamper with a legitimate plug-in to build a malicious plug-in and trick users into installing it. Successful exploit could allow the attacker to obtain the root...