CVE-2015-2346 Information

Description

XML external entity (XXE) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter.

Reference

http://packetstormsecurity.com/files/131459/Huawei-SEQ-Analyst-XXE-Injection.html http://seclists.org/fulldisclosure/2015/Apr/42