CVE-2016-8789

Name of the Vulnerable Software and Affected Versions Huawei eSpace Integrated Access Device (IAD) versions V300R001C03 through V300R001C07, V300R001C20

Description The issue allows an attacker to trick a user into clicking a URL containing malicious scripts, potentially leading to the obtainment of user information or session hijacking, due to a cross-site scripting (XSS) issue.

Recommendations For versions V300R001C03 through V300R001C07 and V300R001C20, consider restricting access to potentially vulnerable URLs and avoid clicking on suspicious links to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.