High severity7.8NVD Advisory· Published Nov 22, 2017· Updated May 13, 2026

CVE-2017-8185

Description

ME906s-158 earlier than ME906S_Installer_13.1805.10.3 versions has a privilege elevation vulnerability. An attacker could exploit this vulnerability to modify the configuration information containing malicious files and trick users into executing the files, resulting in the execution of arbitrary code.

Affected products

Huawei/Me906s 158 Firmware
cpe:2.3:o:huawei:me906s-158_firmware:*:*:*:*:*:*:*:*
Range: <me906s_installer_13.1805.10.3
Huawei Technologies Co., Ltd./ME906s-158v5
Range: Earlier than ME906S_Installer_13.1805.10.3 versions

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20170927-01-me906s-ennvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000