Remote Configuration Vulnerability in Huawei E355s Mobile WiFi Device
CVE-2015-3912

Currently unrated

Key Information:

Vendor: Huawei
Status: Webui
Vendor: CVE Published:; 21 May 2015

Summary

The Huawei E355s Mobile WiFi device is susceptible to a vulnerability that enables attackers to remotely access sensitive configuration data. The issue arises from inadequate security measures in the device's firmware and WEBUI, allowing malicious users to exploit the vulnerability by either sniffing network traffic or sending unspecified commands. To safeguard against this threat, it is recommended to update to the latest firmware version and ensure all security best practices are in place.

References

http://www.huawei.com/en/security/psirt/security-bulletin...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/74397

vdb-entryx_refsource_BID

Timeline

Vulnerability published
May 21, 2015
Vulnerability Reserved
May 12, 2015