VYPR
High severity8.8NVD Advisory· Published Feb 15, 2018· Updated Jun 17, 2026

CVE-2017-15329

CVE-2017-15329

Description

Huawei UMA V200R001C00 has a SQL injection vulnerability in the operation and maintenance module. An attacker logs in to the system as a common user and sends crafted HTTP requests that contain malicious SQL statements to the affected system. Due to a lack of input validation on HTTP requests that contain user-supplied input, successful exploitation may allow the attacker to execute arbitrary SQL queries.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Huawei/Umallm-fuzzy
    Range: V200R001C00
  • Huawei Technologies Co., Ltd./UMAv5
    Range: V200R001C00

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.