Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-7248
HistoryDec 30, 2015 - 5:59 a.m.

CVE-2015-7248

2015-12-3005:59:01
CWE-200
[email protected]
web.nvd.nist.gov
34
cve-2015-7248
zte
zxhn h108n r1a
vulnerability
remote attackers
password hashes
html source code

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.4%

JSON

ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE allow remote attackers to discover usernames and password hashes by reading the cgi-bin/webproc HTML source code, a different vulnerability than CVE-2015-8703.

Affected configurations

NVD
Node
ztezxhn_h108n_r1a_firmwareRangezte.bhs.zxhnh108nr1a.h_pe
AND
ztezxhn_h108n_r1a

Related

cve 1
prion 2
cvelist 2
nvd 2
zdt 1
cert 1
packetstorm 1
openvas 1
exploitpack 1
exploitdb 1
cve
cve
CVE-2015-8703
2015-12-30 05:59:14
prion
prion
Design/Logic Flaw
2015-12-30 05:59:00
Code injection
2015-12-30 05:59:00
cvelist
cvelist
CVE-2015-7248
2015-12-30 02:00:00
CVE-2015-8703
2015-12-30 02:00:00
nvd
nvd
CVE-2015-8703
2015-12-30 05:59:14
CVE-2015-7248
2015-12-30 05:59:01
zdt
zdt
ZTE ZXHN H108N R1A, ZXV10 W300 Routers - Multiple Vulnerabilities
2015-11-20 00:00:00
cert
cert
ZTE ZXHN H108N R1A routers contain multiple vulnerabilities
2015-11-03 00:00:00
packetstorm
packetstorm
ZTE ZXHN H108N R1A / ZXV10 W300 Traversal / Disclosure / Authorization
2015-11-20 00:00:00
openvas
openvas
Multiple ADSL Routers Directory Traversal Vulnerability (Mar 2015) - Active Check
2015-03-23 00:00:00
exploitpack
exploitpack
ZTE ZXHN H108N R1A ZXV10 W300 Routers - Multiple Vulnerabilities
2015-11-20 00:00:00
exploitdb
exploitdb
ZTE ZXHN H108N R1A / ZXV10 W300 Routers - Multiple Vulnerabilities
2015-11-20 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.4%

JSON
Related for CVE-2015-7248
cve1prion2cvelist2nvd2zdt1cert1packetstorm1openvas1exploitpack1exploitdb1