CVE-2025-49599

{"id": "CVE-2025-49599", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.1, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.3}]}, "published": "2025-06-06T17:15:36.147", "references": [{"url": "https://www.youtube.com/watch?v=l1eYpcNvZdQ", "source": "cve@mitre.org"}, {"url": "https://www.youtube.com/watch?v=l1eYpcNvZdQ", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "cve@mitre.org", "description": [{"lang": "en", "value": "CWE-863"}]}], "descriptions": [{"lang": "en", "value": "Huawei EG8141A5 devices through V5R019C00S100, EG8145V5 devices through V5R019C00S100, and EG8145V5-V2 devices through V5R021C00S184 allow the Epuser account to disable ONT firewall functionality, e.g., to remove the default blocking of the SSH and TELNET TCP ports, aka HWNO-56Q3."}, {"lang": "es", "value": "Los dispositivos Huawei EG8141A5 a trav\u00e9s de V5R019C00S100, los dispositivos EG8145V5 a trav\u00e9s de V5R019C00S100 y los dispositivos EG8145V5-V2 a trav\u00e9s de V5R021C00S184 permiten que la cuenta Epuser deshabilite la funcionalidad del firewall ONT, por ejemplo, para eliminar el bloqueo predeterminado de los puertos TCP SSH y TELNET, tambi\u00e9n conocido como HWNO-56Q3."}], "lastModified": "2025-06-09T16:15:46.830", "sourceIdentifier": "cve@mitre.org"}