← voltar
CVE-2017-8155

CVE-2017-8155

EPSS 0.3%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
22 nov 2017Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the outdoor unit and execute them without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.
Produtos afetados
Huawei Technologies Co., Ltd. · B2338-168

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20170920-01-cpe-en