DLL Hijack Vulnerability in Huawei HiSuite Software
CVE-2016-8274

7.8HIGH

Key Information:

Vendor
Huawei
Status
Hisuite 4.0.5.300 Ove
Vendor
CVE Published:
2 April 2017

Summary

The Huawei HiSuite software version 4.0.5.300_OVE is susceptible to a dynamic link library (DLL) hijack vulnerability. This flaw allows an attacker to exploit the application by tricking the system into loading malicious DLL files, which can lead to the execution of arbitrary code. Users of this software are advised to take necessary precautions to mitigate potential security risks.

Affected Version(s)

HiSuite 4.0.5.300_OVE HiSuite 4.0.5.300_OVE

References

http://www.huawei.com/en/psirt/security-advisories/huawei...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.