CVE-2017-8138

Summary

HedEx Earlier than V200R006C00 versions has a cross-site request forgery (CSRF) vulnerability. An attacker could trick a user into accessing a website containing malicious scripts which may tamper with configurations and interrupt normal services.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.HedEx LiteEarlier than V200R006C00 versionsaffected

Weaknesses

  • CSRF

ADP Enrichment

CVE Program Container

Additional References

References