Directory Traversal Vulnerability in Mate 9 Smartphones with Software MHA-AL00AC00B125

Directory Traversal Vulnerability in Mate 9 Smartphones with Software MHA-AL00AC00B125

CVE-2017-2706 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:P

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service.

Learn more about our Web Application Penetration Testing UK.