Vulnerability: Insecure Transfer of Huawei Vmall APP Upgrade Package Allows MITM Attacks

Vulnerability: Insecure Transfer of Huawei Vmall APP Upgrade Package Allows MITM Attacks

CVE-2017-2739 · LOW Severity

AV:A/AC:M/AU:N/C:N/I:P/A:N

The upgrade package of Huawei Vmall APP Earlier than HwVmall 1.5.3.0 versions is transferred through HTTP. A man in the middle (MITM) can tamper with the upgrade package of Huawei Vmall APP, and to implant the malicious applications.

Learn more about our Web Application Penetration Testing UK.