CVE-2017-15308

Name of the Vulnerable Software and Affected Versions Huawei iReader app versions prior to 8.0.2.301

Description The issue is due to insufficient validation on the URL used for loading network data, allowing an attacker to control app access and load malicious websites. This enables the attacker to run code from these webpages.

Recommendations For versions prior to 8.0.2.301, update to version 8.0.2.301 or later to resolve the issue. As a temporary workaround, consider restricting access to untrusted websites to minimize the risk of exploitation.