← volver
CVE-2017-8155

CVE-2017-8155

EPSS 0.3%
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
22 nov 2017Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the outdoor unit and execute them without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.
Productos afectados
Huawei Technologies Co., Ltd. · B2338-168

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20170920-01-cpe-en