CVE-2017-8133

Summary

Huawei iManager NetEco with software V600R008C00 and V600R008C10 has a command injection vulnerability. An authenticated, remote attacker could exploit this vulnerability to send malicious packets to a target device. Successful exploit could enable a low privileged user to execute commands that a high privileged user could execute, causing the files to be tampered with or deleted.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.iManager NetEcoV600R008C00 and V600R008C10affected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References