PT-2025-24311 · Huawei · Huawei Eg8145V5-V2+2
Published
2025-06-06
·
Updated
2025-06-07
·
CVE-2025-49599
CVSS v3.1
4.1
Medium
| Vector | AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Huawei EG8141A5 versions through V5R019C00S100
Huawei EG8145V5 versions through V5R019C00S100
Huawei EG8145V5-V2 versions through V5R021C00S184
Description
The issue allows the Epuser account to disable ONT firewall functionality. This can be used to remove the default blocking of the SSH and TELNET TCP ports.
Recommendations
For Huawei EG8141A5 versions through V5R019C00S100, restrict access to the Epuser account to prevent disabling of the ONT firewall functionality.
For Huawei EG8145V5 versions through V5R019C00S100, restrict access to the Epuser account to prevent disabling of the ONT firewall functionality.
For Huawei EG8145V5-V2 versions through V5R021C00S184, restrict access to the Epuser account to prevent disabling of the ONT firewall functionality.
As a temporary workaround, consider blocking the SSH and TELNET TCP ports at the network level to minimize the risk of exploitation.
Exploit
Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei Eg8141A5
Huawei Eg8145V5
Huawei Eg8145V5-V2