Description
Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the SerialNumber field, then use the last 8 characters as the default password to log in to the router.
Published: 2026-05-13
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Huawei HG630 V2 routers expose an authentication bypass that allows an attacker with no prior credentials to retrieve the device serial number via the public /api/system/deviceinfo endpoint. The last eight characters of that serial number are used as the default administrative password, so once the serial number is known the attacker can log in as the device administrator. This gives the attacker full control over routing configuration, firmware updates, and network traffic, effectively elevating an unauthenticated adversary to privileged access.

Affected Systems

Huawei HG630 V2 Router.

Risk and Exploitability

The CVSS score of 8.7 indicates a high severity vulnerability. The EPSS score is 0.00153, indicating a very low but non-zero exploitation probability, and the vulnerability is not listed in the CISA KEV catalog. Attackers can exploit the flaw simply by issuing an HTTP GET to the device's /api/system/deviceinfo endpoint, which is accessible without authentication, and then attempting to log in with the derived default password. Based on the description, it is inferred that the attack vector is the network; no additional authentication or restrictions are required.

Generated by OpenCVE AI on May 26, 2026 at 15:13 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware update that remediates the authentication bypass.
  • Disable or restrict the /api/system/deviceinfo endpoint so unauthenticated users cannot retrieve the serial number.
  • Change passwords from the default value and ensure the device's administrative credentials are strong and not linked to the serial number.
  • Restrict remote management to trusted IP addresses or require VPN access.

Generated by OpenCVE AI on May 26, 2026 at 15:13 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 26 May 2026 13:45:00 +0000

Type Values Removed Values Added
Description Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the SerialNumber field, then use the last 8 characters as the default password to login to the router. Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the SerialNumber field, then use the last 8 characters as the default password to log in to the router.

Thu, 14 May 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Huawei
Huawei hg630 Router
Vendors & Products Huawei
Huawei hg630 Router

Thu, 14 May 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 13 May 2026 15:15:00 +0000

Type Values Removed Values Added
Description Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the SerialNumber field, then use the last 8 characters as the default password to login to the router.
Title Huawei HG630 V2 Router Authentication Bypass via Serial Number
Weaknesses CWE-798
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Huawei Hg630 Router
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-05-26T11:51:42.036Z

Reserved: 2026-05-13T13:49:58.352Z

Link: CVE-2020-37220

cve-icon Vulnrichment

Updated: 2026-05-14T13:41:44.032Z

cve-icon NVD

Status : Deferred

Published: 2026-05-13T16:16:33.423

Modified: 2026-05-26T14:16:25.173

Link: CVE-2020-37220

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T15:15:08Z

Weaknesses