CVE-2016-6826

MEDIUM

Huawei Anyoffice Secureapp - Improper Access Control

Title source: rule

Description

Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service (application crash) via a crafted compressed email attachment.

References (1)

[Vendor Advisory] http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160815-01-anymail-en

Scores

CVSS v3 6.5

EPSS 0.0019

EPSS Percentile 40.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-284

Status published

Affected Products (3)

huawei/anyoffice_secureapp

n/a/n/a

Timeline

Published Sep 26, 2016

Tracked Since Feb 18, 2026