Skip to main content

Ireader

3 CVEs product

Monthly

CVE-2017-15310 MEDIUM This Month

Huawei iReader app before 8.0.2.301 has an arbitrary file deletion vulnerability due to the lack of input validation. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ireader
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-15309 HIGH This Week

Huawei iReader app before 8.0.2.301 has a path traversal vulnerability due to insufficient validation on file storage paths. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Huawei Ireader
NVD
CVSS 3.0
7.1
EPSS
0.1%
CVE-2017-15308 HIGH This Week

Huawei iReader app before 8.0.2.301 has an input validation vulnerability due to insufficient validation on the URL used for loading network data. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ireader
NVD
CVSS 3.0
8.8
EPSS
0.2%
EPSS 0% CVSS 6.5
MEDIUM This Month

Huawei iReader app before 8.0.2.301 has an arbitrary file deletion vulnerability due to the lack of input validation. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ireader
NVD
EPSS 0% CVSS 7.1
HIGH This Week

Huawei iReader app before 8.0.2.301 has a path traversal vulnerability due to insufficient validation on file storage paths. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Huawei Ireader
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Huawei iReader app before 8.0.2.301 has an input validation vulnerability due to insufficient validation on the URL used for loading network data. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ireader
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy