CVE-2015-2346

Currently unrated

Key Information:

Vendor: Huawei
Status: Seq Analyst
Vendor: CVE Published:; 18 May 2015

Summary

XML external entity (XXE) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter.

References

http://seclists.org/fulldisclosure/2015/Apr/42

mailing-listx_refsource_FULLDISC

http://packetstormsecurity.com/files/131459/Huawei-SEQ-An...

x_refsource_MISC

Timeline

Vulnerability published
May 18, 2015
Vulnerability Reserved
Mar 18, 2015