7 matches found
CVE-2016-7109
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7110...
CVE-2016-7107
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 SPH206 allows remote attackers to reset arbitrary user passwords and consequently affect system data integrity via unspecified vectors...
Design/Logic Flaw
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7110...
CVE-2016-7108
Huawei UMA (Unified Maintenance Audit) before V200R001C00SPC200 SPH206 suffers an information disclosure where remote authenticated users can obtain MD5 hashes of arbitrary user passwords via unspecified vectors. The advisory HWPSIRT-2016-07051 notes a fix; apply Huawei software updates to mitiga...
CVE-2016-7110
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7109...
CVE-2016-7107
Huawei UMA (Unified Maintenance Audit) prior to V200R001C00SPC200 SPH206 is affected by CVE-2016-7107 due to insufficient parameter validation on certain pages, enabling remote attackers to reset arbitrary user passwords and thereby compromise data integrity via unspecified vectors. The issue is ...
CVE-2016-7110
CVE-2016-7110 — Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 is vulnerable to remote command execution via “special characters.” The NVD description states that an attacker can exploit this to execute arbitrary commands. References point to Huawei PSIRT advisory and a SecurityF...