CVE-2017-17215
Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- December 04, 2017
- Published Date
- March 20, 2018
- Last Updated
- August 05, 2024
- Vendor
- Huawei Technologies Co., Ltd.
- Product
- HG532
- Description
- Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to port 37215 to launch attacks. Successful exploit could lead to the remote execution of arbitrary code.
CVSS Scores
EPSS Score
- Score
- 91.90% (Percentile: 99.67%) as of 2025-04-29
Exploit Status
- Exploited in the Wild
- Yes (added 2025-04-23 00:00:00 UTC) Source
References
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| The Shadowserver (via CIRCL) | 2025-04-28 00:00:00 UTC |
Potential Proof of Concepts
Warning: These PoCs have not been tested and could contain malware. Use at your own risk.
ltfafei/HuaWei_Route_HG532_RCE_CVE-2017-17215
Type: github • Created: 2022-11-02 14:07:08 UTC • Stars: 0
POCsuite与goland实现华为HG532路由器命令注入CVE-2017-17215 POC
1337g/CVE-2017-17215
Type: github • Created: 2017-12-25 06:11:24 UTC • Stars: 25
CVE-2017-17215 HuaWei Router RCE (NOT TESTED)