cvedb.io
CVE-2017-8155
HIGH · CVSS 8.4
EPSS exploitation probability: 0%
Published 2017-11-22T19:29:03.553 · Last modified 2026-06-17T01:25:52.680

Summary

The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the outdoor unit and execute them without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.

Affected products

huawei — b2338-168_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when huawei ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.