cvedb.io
CVE-2017-8156
MEDIUM · CVSS 6.8
EPSS exploitation probability: 0%
Published 2017-11-22T19:29:03.583 · Last modified 2026-06-17T01:25:52.790

Summary

The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on the serial port. An attacker can access the serial port on the circuit board of the outdoor unit and log in to the CPE without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.

Affected products

huawei — b2338-168_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when huawei ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.