VYPR
High severity7.8NVD Advisory· Published Dec 11, 2017· Updated Jun 17, 2026

CVE-2014-8358

CVE-2014-8358

Description

Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 (23.015.02.07.1014) and before V200R003B015D02SP08C1014 (23.015.02.08.1014) use a weak ACL for the "Mobile Partner" directory, which allows remote attackers to gain SYSTEM privileges by compromising a low privilege account and modifying Mobile Partner.exe.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:o:huawei:ec156_firmware:v200r003b009d05sp03c1014:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ec176_firmware:v200r003b009d05sp03c1014:*:*:*:*:*:*:*
  • cpe:2.3:o:huawei:ec177_firmware:v200r003b009d05sp03c1014:*:*:*:*:*:*:*
  • Huawei/Ec156llm-fuzzy
    Range: < UTPS-V200R003B015D02SP07C1014, < V200R003B015D02SP08C1014
  • Huawei/Ec176llm-fuzzy
    Range: < UTPS-V200R003B015D02SP07C1014, < V200R003B015D02SP08C1014
  • Huawei/Ec177llm-fuzzy
    Range: < UTPS-V200R003B015D02SP07C1014, < V200R003B015D02SP08C1014
  • Range: < UTPS-V200R003B015D02SP07C1014, < V200R003B015D02SP08C1014

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.