EUVD-2017-17147

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Versions earlier than ME906S_Installer_13.1805.10.3 have a privilege elevation vulnerability.

Reporter	Title	Published	Views	Family All 8
CNVD	Huawei ME906S Elevation of Privilege Vulnerability	28 Sep 201700:00	–	cnvd
CVE	CVE-2017-8185	22 Nov 201719:00	–	cve
Cvelist	CVE-2017-8185	22 Nov 201719:00	–	cvelist
Huawei	Security Advisory - Privilege Escalation Vulnerability in Huawei ME906S Products	27 Sep 201700:00	–	huawei
Lenovo	Local Privilege Escalation in Huawei ME906s 4G LTE Mobile Broadband Driver - us	10 Nov 201700:00	–	lenovo
NVD	CVE-2017-8185	22 Nov 201719:29	–	nvd
OSV	CVE-2017-8185	22 Nov 201719:29	–	osv
Prion	Privilege escalation	22 Nov 201719:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "fe30b8f6-375d-3449-a504-f13e017ef367",
        "vendor": {
          "name": "Huawei Technologies Co., Ltd."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "94afcbbc-df30-349b-a6ae-8acf71792159",
        "product": {
          "name": "ME906s-158"
        },
        "product_version": "Earlier than ME906S_Installer_13.1805.10.3 versions"
      }
    ]
  }
]

Source	Link
huawei	www.huawei.com/en/psirt/security-advisories/huawei-sa-20170927-01-me906s-en
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.7High risk

Vulners AI Score7.7

CVSS 37.8

CVSS 27.2

EPSS0.00023