Huawei hg532e configuration3/28/2024 "Some time between 20 this issue was then also rediscovered by some nefarious types who used it as part of the exploitation pack to consumer home routers as part of the Mirai botnet," a source told us. Unfortunately, Huawei has chosen to patch the models one by one as the UPnP bug is found and reported again and again, rather than issuing a comprehensive fix to seal the hole for good across all its vulnerable gateways.Īnd there was good reason for Huawei to close the hole at once across all devices using its buggy firmware: miscreants were exploiting the flaw. One at a time, please – don't all rush inĮl Reg has studied Huawei's home gateway firmware, and found blocks of code, particularly in the UPnP component, reused across multiple device models, as you'd expect. These were then patched by the manufacturer, suggesting the Chinese giant was tackling the security hole whack-a-mole-style, rolling out fixes only when someone new discovered and reported the bug. The vulnerability, located in the firmware's UPnP handling code, was uncovered by other researchers in more Huawei routers years later. One source described the bug as a "trivially exploitable remote code execution issue in the router."
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |