This security advisory describes one low risk vulnerability.
The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions. A remote attacker on the local network can gain access to the device Wi-Fi network to read and modify specific configurations of speakers through a series of operations.Mitigation
Install updates from vendor's website.Vulnerable software versions
Huawei Myna: 184.108.40.206(H100SP6C00), 220.127.116.11(H100SP5C00), 18.104.22.168(H100SP8C00), 22.214.171.124(H100SP10C00), 126.96.36.199(H100SP11C00), 188.8.131.52(H100SP12C00)CPE
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.