CVE-2024-58256 – EnzoH contains an OS command injection vulnerab... (How to Fix)

Q: What is the severity of CVE-2024-58256?

CVE-2024-58256 has a CVSS score of 4.5 (MEDIUM). EnzoH contains an OS command injection vulnerability that allows attackers to execute arbitrary commands on affected systems. This affects systems running vulnerable versions of EnzoH software, potentially compromising server integrity and data security.

📋 TL;DR

EnzoH contains an OS command injection vulnerability that allows attackers to execute arbitrary commands on affected systems. This affects systems running vulnerable versions of EnzoH software, potentially compromising server integrity and data security.

💻 Affected Systems

Products:

EnzoH

Versions: Specific versions not detailed in advisory; check Huawei advisory for affected versions

Operating Systems: Not specified in available information

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability exists in Huawei EnzoH product; exact configurations require checking vendor advisory

📦 What is this software?

Enzoh W5611t Firmware by Huawei

View all CVEs affecting Enzoh W5611t Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with attacker gaining root/administrator privileges, data exfiltration, ransomware deployment, and persistent backdoor installation.

🟠

Likely Case

Limited command execution within application context, potential data leakage, and service disruption.

🟢

If Mitigated

Contained impact within application sandbox with minimal data exposure if proper input validation and least privilege are enforced.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires specific conditions for command injection; no public exploit details available

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Huawei security advisory for specific patched versions

Vendor Advisory: https://www.huawei.com/cn/psirt/security-advisories/2025/huawei-sa-ocivihep-cn

Restart Required: No

Instructions:

1. Access Huawei security advisory 2. Identify affected version 3. Download and apply recommended patch 4. Verify patch installation

🔧 Temporary Workarounds

Input Validation Enhancement

all

Implement strict input validation and sanitization for all user-supplied data

Least Privilege Configuration

all

Run EnzoH with minimal necessary privileges to limit potential damage

🧯 If You Can't Patch

Implement network segmentation to isolate EnzoH systems
Deploy application-level firewall with command injection detection rules

🔍 How to Verify

Check if Vulnerable:

Check EnzoH version against Huawei security advisory for affected versions

Check Version:

Check EnzoH documentation for version query command

Verify Fix Applied:

Verify installed version matches or exceeds patched version from advisory

📡 Detection & Monitoring

Log Indicators:

Unusual command execution patterns
Suspicious process creation from EnzoH context
Error logs showing command injection attempts

Network Indicators:

Unexpected outbound connections from EnzoH servers
Command and control traffic patterns

SIEM Query:

source="enzoH" AND (process_execution OR command_injection)

📊 Metadata

CVE ID: CVE-2024-58256

CVSS v3 Score: 4.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-200

EPSS Score: 0.01% exploit probability (0.4th percentile)

Published: August 8, 2025

Last Updated: December 8, 2025

🔗 References

https://www.huawei.com/cn/psirt/security-advisories/2025/huawei-sa-ocivihep-cn Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-58256, you might also want to check these: