CVE-2017-8139

Summary

HedEx Earlier than V200R006C00 versions have the stored cross-site scripting (XSS) vulnerability. Attackers can exploit the vulnerability to plant malicious scripts into the configuration file to interrupt the services of legitimate users.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.HedEx LiteEarlier than V200R006C00 versionsaffected

Weaknesses

  • XSS

ADP Enrichment

CVE Program Container

Additional References

References