Unrated severityNVD Advisory· Published Nov 7, 2015· Updated May 6, 2026

CVE-2015-7254

Description

Directory traversal vulnerability on Huawei HG532e, HG532n, and HG532s devices allows remote attackers to read arbitrary files via a .. (dot dot) in an icon/ URI.

Affected products

Huawei/Hg532e
cpe:2.3:h:huawei:hg532e:-:*:*:*:*:*:*:*
Huawei/Hg532n
cpe:2.3:h:huawei:hg532n:-:*:*:*:*:*:*:*
Huawei/Hg532s
cpe:2.3:h:huawei:hg532s:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/438928nvdThird Party AdvisoryUS Government Resource
www.huawei.com/en/psirt/security-advisories/hw-462908nvd
www.securityfocus.com/bid/77506nvd
www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-462908.htmnvd
github.com/0xAdrian/scripts/blob/master/2015_7254_exploit.pynvd
www.exploit-db.com/exploits/45991/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.015
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000