Huawei E9000 Rack Servers: XML External Entity (XXE) Vulnerability in Hyper Management Module (HMM)

CVE-2016-6898 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:N/A:P

XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.

Learn more about our Web App Pen Testing.