VYPR
High severity8.8NVD Advisory· Published Dec 22, 2017· Updated Jun 17, 2026

CVE-2017-15308

CVE-2017-15308

Description

Huawei iReader app before 8.0.2.301 has an input validation vulnerability due to insufficient validation on the URL used for loading network data. An attacker can control app access and load malicious websites created by the attacker, and the code in webpages would be loaded and run.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Huawei/iReader2 versions
    cpe:2.3:a:huawei:ireader:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:huawei:ireader:*:*:*:*:*:*:*:*range: <8.0.2.301
    • (no CPE)range: <8.0.2.301
  • Huawei Technologies Co., Ltd./iReaderv5
    Range: before 8.0.2.301

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.