Published: 13/06/2019 Updated: 14/06/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

There is a reflection XSS vulnerability in the HedEx products. Remote attackers send malicious links to users and trick users to click. Successfully exploit cloud allow the malicious user to initiate XSS attacks. Affects HedEx Lite versions earlier than V200R006C00SPC007.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei hedex lite

There is a reflection XSS vulnerability in the HedEx products Remote attackers send malicious links to users and trick users to click Successfully exploit cloud allow the attacker to launch XSS attacks (Vulnerability ID: HWPSIRT-2018-12124) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2019-5286 Huawe ...

CWE-79 https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190605-01-hedex-en https://nvd.nist.gov https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190605-01-hedex-en

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-5286

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect