Incorrect Permission Control in Huawei DSM Allows Unauthorized Access to Encrypted Documents

Incorrect Permission Control in Huawei DSM Allows Unauthorized Access to Encrypted Documents

CVE-2016-2406 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The permission control module in Huawei Document Security Management (aka DSM) before V100R002C05SPC670 allows remote authenticated users to obtain sensitive information from encrypted documents by leveraging incorrect control of permissions on the PrintScreen button.

Learn more about our User Device Pen Test.