What is it?
A weakness has been identified in the Huawei HG532 router.
This weakness has been observed being exploited “in the wild.”
The source code for this exploit has been published, increasing the risk of copy-cat threats.
Why is it a risk?
An authenticated attacker could send malicious packets to port 37215 to launch attacks. Successful exploit could lead to the remote execution of arbitrary code.
How can you mitigate the risk?
Huawei advises that you should change the default password on the device AND configure the built-in firewall function (see the Security Notice linked below) to close all unnecessary ports.
Resources:
Huawei Security Notice
https://www.huawei.com/en/psirt/security-notices/huawei-sn-20171130-01-hg532-en
