CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-6898

XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.2%

CVSS Severity

CVSS v3 Score 6.6

CVSS v2 Score 4.9

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-e9000-en
http://www.securityfocus.com/bid/92620
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-e9000-en
http://www.securityfocus.com/bid/92620

Products affected by CVE-2016-6898

Huawei » E9000 Chassis » Version: v100r001c00

cpe:2.3:a:huawei:e9000_chassis:v100r001c00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6898

Products

Pricing

Contact Us