Remote Code Execution Vulnerability in Huawei Routers
CVE-2013-4630

Currently unrated

Key Information:

Vendor: Huawei
Status: Ar 2200; Ar 1200; Ar 3200; Ar 150
Vendor: CVE Published:; 20 June 2013

Summary

A stack-based buffer overflow vulnerability exists in Huawei AR 150, 200, 1200, 2200, and 3200 routers when SNMPv3 debugging is enabled. This flaw allows remote attackers to exploit the system by sending malformed SNMPv3 requests, which can lead to the execution of arbitrary code on the affected devices. Proper security configurations and updates are essential to mitigate the risks associated with this vulnerability.

References

http://www.exploit-db.com/exploits/25295

exploitx_refsource_EXPLOIT-DB

http://www.huawei.com/en/security/psirt/security-bulletin...

x_refsource_CONFIRM

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 20, 2013
Vulnerability Reserved
Jun 20, 2013