Huawei Mobile Partner suffers from a DLL hijacking vulnerability.
913927cdd94e02084afad32b696a3ca202f8c09234d1c117b3a97dac19da2ff7Huawei DG8045 Router version 1.0 suffers from a credential disclosure vulnerability.
77520f5248897d5ea9b2a1365de9496fd926e0602ff19e03ca682ca8d9ddccc9Huawei DG8045 ships with a default password that is the last 8 character of the device's serial number listed on the back.
f56018859afa47d0e08a86ef2e86ac8c4541f3a4b1b3696aee916b06873e759eHuawei MBAMainService suffers from an unquoted service path vulnerability.
d2b8fc57152cbd17af43044bc1fb9bb04208a9bfa9dce6b64829405777227622Huawei HG630 2 Router suffers from an authentication bypass vulnerability.
5116c765f399f1ea10d41bb253e734313f0191f75f3cd2468e28f6608140f954This Metasploit module exploits a directory traversal in Huawei HG255.
067ab5b18acb24c456e0b9a078cfe01b25919509e185553aad4b5a3a85592babHuawei HG530 suffers from unauthenticated remote reboot and restore vulnerabilities.
1673a468efdde69aebe08703344ea5333b8fcb821a0fab03048925cb13144a21Huawei HG530 suffers from a cross site request forgery vulnerability.
dab593e77d11f4408284dcb215c332079e7c3fbd3f10ba8146740a871132adf0Huawei E5330 version 21.210.09.00.158 suffers from a cross site request forgery vulnerability.
12dd7814c4179b0cffb630e3ef8d2a2c67b7b22852ce245228d07fb24fae998fHuawei Router HG532e command execution exploit.
ad6677ad79c2dee98de9e83cba02dc6916c26fa35673bde067e9cd0b326fdb99Huawei B315s-22 suffers from an information disclosure vulnerability.
2d4aa1c2293c9c5b40be0b5521cc53c7fee1572a7627085c37014fd899606e47This advisory describes a buffer overflow found in Huawei P8 Lite ALE-21 HI621sft, operating system versions EMUI 3.1 - wkupccpu debugfs driver.
d40d38e0a9f14578c574f26fe0869def5ba0555d6b646ec1c96d3aea5c4ed0ceHuawei HG255s suffers from a directory traversal vulnerability.
b421c24591f0f6e7b124c83bcbcfd081112d9efb502c7cb471dfa8ceca3daf75This Metasploit module exploits a command injection vulnerability in the Huawei HG532n routers provided by TE-Data Egypt, leading to a root shell. The router's web interface has two kinds of logins, a "limited" user:user login given to all customers and an admin mode. The limited mode is used here to expose the router's telnet port to the outside world through NAT port-forwarding. With telnet now remotely accessible, the router's limited "ATP command line tool" (served over telnet) can be upgraded to a root shell through an injection into the ATP's hidden "ping" command.
13f129a4c5fe898ac3c2bbe4698d84747643595b279f6dd5ed13bb1e7817b43bHuawei HG658 V2 suffers from a cross site scripting vulnerability.
19a19c0935b736aec0f1f1fc52254da55f11c3423d110f9ef065e5e3a06a1f48Huawei UTPS software version UTPS-V200R003B015D16SPC00C983 suffers from an unquoted service path privilege escalation vulnerability.
af111ecaebdf0489157a897bd2e30ba71575f983ee1d5267b509300f73bbb79aHuawei eSpace IAD suffers from an information disclosure vulnerability.
592b8d8e3b775a1526570b4633f85ec54f02c755da99534da9e6c89eba6f134eHuawei ISM Professional suffers from a cross site scripting vulnerability.
46902e937f7c2a0957308e0d1d356d671660c726f3aba4c8df628f882b039e67Huawei Mobile Broadband HL Service versions 22.001.25.00.03 and below are vulnerable to a DLL side loading attack allowing normal unprivileged users to gain full SYSTEM access.
2563ce6275ba1108791f8d13204c1f460cd819b171ba0d2cbc4d69e26b85e5ddHuawei Wimax routers suffer from cross site request forgery, information disclosure, and system manipulation vulnerabilities.
665c198903c1a2084546365ee984482cf859f3ed18d69b64ac380d553c6da03cHuawei HG253s V2 suffers from a remote information disclosure vulnerability.
2e2018d16f6a7f8cddf71c09432c4a1048d6e439aa44ce1118910a868470d54cHuawei HG630a and HG630a-50 ADSL modems come with a default SSH admin password.
8fd45f788187d87ed0ce5fa88883d80a40f4edb047b7de04ef6a62b821397c0dHuawei 3G routers suffer from authentication bypass, cross site request forgery, denial of service, and various other vulnerabilities.
5d2367658e0c166fbe6a18500efffe9f8332dd64802030160bd60d6778785f68Two exploits for Huawei Home Gateway versions HG530 and HG520b that allow for password disclosure and password change.
34153720563cde72b885eab1bf23d3c0496dfd344433d5815451d5624f2154ecHuawei SEQ Analyst version V200R002C03LG0001SPC100 suffers from multiple cross site scripting vulnerabilities.
23d7a6ced961a189c2a32abecdb8ca98c500a122e3542a1ccc4efa230928e57eHuawei SEQ Analyst version V200R002C03LG0001SPC100 suffers from an XML external entity injection vulnerability.
c7c2407779c7f1a975e407883855dddb3f3c26e41f43b310f77c4493aaafe71b
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed