Description
Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to port 37215 to launch attacks. Successful exploit could lead to the remote execution of arbitrary code.
In plain language
AI Worth attentionIf you run a Huawei HG532 router (and especially a customized firmware version), this vulnerability can let a logged-in attacker remotely take control by sending harmful network traffic to port 37215—so you should act, but it’s not usually an “internet-only” risk without credentials.
CVE-2017-17215 is a remote code execution flaw (CWE-20) in Huawei HG532 with some customized firmware versions, triggered via malicious packets to port 37215 by an authenticated attacker.
What to do now
- Check whether your device is Huawei HG532 (and note whether you have any “customized” firmware).
- Verify whether the router is reachable for administration and whether port 37215 is accessible from untrusted networks.
- Change the router’s password to a strong, unique value (do not use any default password).
- Enable/configure the router’s built-in firewall to restrict management and only allow access from trusted locations (your office/VPN).
- If you can, upgrade/replace the router with a version that is confirmed to be fixed by Huawei for your exact HG532 firmware build.
CVSS Vector Breakdown
AV:NAttack VectorAC:LAttack ComplexityPR:LPrivileges RequiredUI:NUser InteractionS:UScopeC:HConfidentialityI:HIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
Exploit details including PoC links, Metasploit modules, and scanner templates are available after registration.
View exploit detailsAttack Graph
Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/⌘ + scroll to zoom, or go fullscreen.
MITRE ATT&CK
1 techniqueReferences
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2017-17215 and every CVE in our database. Create a free account — no credit card required.
Create Free Account