Medium severity6.6NVD Advisory· Published Sep 7, 2016· Updated May 6, 2026

CVE-2016-6898

Description

XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.

Affected products

Huawei/E9000 Chassis
cpe:2.3:a:huawei:e9000_chassis:*:*:*:*:*:*:*:*
Range: <=v100r001c00

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-e9000-ennvdVendor Advisory
www.securityfocus.com/bid/92620nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.429
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000