Authorization

2019-11-2920:15:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Some Huawei home routers have an improper authorization vulnerability. Due to improper authorization of certain programs, an attacker can exploit this vulnerability to execute uploaded malicious files and escalate privilege.

CPENameOperatorVersion
cd10-10_firmwarege10.0.2.2
cd10-10_firmwarelt10.0.2.7
cd16-10_firmwarege10.0.2.3
cd16-10_firmwarelt10.0.2.5
cd17-10_firmwarege9.0.3.3
cd17-10_firmwarelt10.0.2.5
cd18-10_firmwarege9.0.2.23
cd18-10_firmwarelt10.0.2.5
hirouter-cd15-10_firmwarege9.0.2.3
hirouter-cd15-10_firmwarelt10.0.2.5

Name	Operator	Version
cd10-10_firmware	ge	10.0.2.2
cd10-10_firmware	lt	10.0.2.7
cd16-10_firmware	ge	10.0.2.3
cd16-10_firmware	lt	10.0.2.5
cd17-10_firmware	ge	9.0.3.3
cd17-10_firmware	lt	10.0.2.5
cd18-10_firmware	ge	9.0.2.23
cd18-10_firmware	lt	10.0.2.5
hirouter-cd15-10_firmware	ge	9.0.2.3
hirouter-cd15-10_firmware	lt	10.0.2.5