XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.
http://www.securityfocus.com/bid/92620
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160824-01-e9000-en