CVE-2017-17215
UnknownEPSS 78.61%
Last modified
CVE-2017-17215 is a vulnerability of currently unknown severity. Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to port 37215 to launch attacks. EPSS estimates a 78.61% chance of exploitation in the next 30 days.
Description
Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to port 37215 to launch attacks. Successful exploit could lead to the remote execution of arbitrary code.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Hg532 Firmware | All versions |
References
- http://www.huawei.com/en/psirt/security-notices/huawei-sn-20171130-01-hg532-enMitigation, Vendor Advisory
- http://www.securityfocus.com/bid/102344Third Party Advisory, VDB Entry
- http://www.huawei.com/en/psirt/security-notices/huawei-sn-20171130-01-hg532-enMitigation, Vendor Advisory
- http://www.securityfocus.com/bid/102344Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-17215?
Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to port 37215 to launch attacks. Successful exploit could lead to the remote execution of arbitrary code.
How severe is CVE-2017-17215?
Severity scoring for CVE-2017-17215 is pending analysis. The EPSS model estimates a 78.61% probability of exploitation in the next 30 days.
How do I fix CVE-2017-17215?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2017-17215?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST