High severity8.4NVD Advisory· Published Nov 22, 2017· Updated May 13, 2026

CVE-2017-8155

Description

The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the outdoor unit and execute them without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.

Affected products

Huawei Technologies Co., Ltd./B2338-168v5
Range: V100R001C00
Huawei/B2338 168 Firmware
cpe:2.3:o:huawei:b2338-168_firmware:v100r001c00:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20170920-01-cpe-ennvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000