CVE-2018-7932

Name of the Vulnerable Software and Affected Versions: Huawei AppGallery versions prior to 8.0.4.301

Description: The issue allows an attacker to bypass the whitelist mechanism by setting up a malicious network environment and tricking a user into accessing a malicious web page, which can lead to the execution of arbitrary Javascript. This can result in malicious Javascript being loaded and run on a smartphone.

Recommendations: For versions prior to 8.0.4.301, update to version 8.0.4.301 or later to resolve the issue. As a temporary workaround, consider restricting access to untrusted web pages to minimize the risk of exploitation.