cpe:/o:huawei:b2338-168_firmware:v100r001c00 CVE-2017-8156 2017-11-22T14:29:03.583-05:00 2017-12-11T13:35:34.703-05:00 7.2 LOCAL LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2017-12-06T18:16:50.027-05:00 CONFIRM http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20170920-01-cpe-en The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on the serial port. An attacker can access the serial port on the circuit board of the outdoor unit and log in to the CPE without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.