Huawei iReader App URL Input Validation Vulnerability

Huawei iReader App URL Input Validation Vulnerability

CVE-2017-15308 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Huawei iReader app before 8.0.2.301 has an input validation vulnerability due to insufficient validation on the URL used for loading network data. An attacker can control app access and load malicious websites created by the attacker, and the code in webpages would be loaded and run.

Learn more about our Web App Pen Testing.