10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.009 Low
EPSS
Percentile
82.4%
Huawei Honor Cube wireless router WS860s supports the file upload function. It allows users to access its files through the web page. As the device is unable to verify every type of file to be uploaded and does not strictly restrict the file access path through the web page, attackers may upload malicious files to the device and execute them, resulting in information leaks and file tampering (Vulnerability ID: HWPSIRT-2014-0946).
This Vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2014-9134
CPE | Name | Operator | Version |
---|---|---|---|
ws860s | lt | V100R001C02B219 |