Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Huawei Email APP Vicky-AL00 smartphones with software of earlier than VKY-AL00C00B171 versions has a stored cross-site scripting vulnerability. A remote attacker could exploit this vulnerability to send email that storing malicious code to a smartphone and waiting for a user to access this email that triggers execution of the code. An exploit could allow the attacker to execute arbitrary script code on the affected device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Huawei Vicky-AL00 Email应用程序跨站脚本漏洞
Vulnerability Description
Huawei Vicky-AL00是中国华为(Huawei)公司的一款智能手机产品。Email APP是其中的一个电子邮箱应用程序。 Huawei Vicky-AL00 VKY-AL00C00B171及之前的版本中的Email应用程序存在跨站脚本漏洞,该漏洞源于程序没有充分的校验参数。远程攻击者可利用该漏洞发送带恶意代码的邮件并等待用户访问该邮件,从而执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A