VULHUB ™

Multiple Huawei EchoLife Routers are prone to the following security vulnerabilities: 1. An information-disclosure vulnerability 2. A session-hijacking vulnerability 3. A cross-site request-forgery vulnerability Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user, obtain potentially sensitive information and gain unauthorized access or perform unauthorized actions. Other attacks may also be possible.

Multiple Huawei EchoLife Routers are prone to the following security vulnerabilities: 1. An information-disclosure vulnerability 2. A session-hijacking vulnerability 3. A cross-site request-forgery vulnerability Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user, obtain potentially sensitive information and gain unauthorized access or perform unauthorized actions. Other attacks may also be possible.