CVE-2015-2346

XML external entity (XXE) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:huawei:seq_analyst:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:27

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/131459/Huawei-SEQ-Analyst-XXE-Injection.html - () http://packetstormsecurity.com/files/131459/Huawei-SEQ-Analyst-XXE-Injection.html -
References () http://seclists.org/fulldisclosure/2015/Apr/42 - Exploit () http://seclists.org/fulldisclosure/2015/Apr/42 - Exploit

Information

Published : 2015-05-18 15:59

Updated : 2024-11-21 02:27


NVD link : CVE-2015-2346

Mitre link : CVE-2015-2346

CVE.ORG link : CVE-2015-2346


JSON object : View

Products Affected

huawei

  • seq_analyst