EUVD-2021-8911

Malicious code in bioql PyPI...

The vulnerability of the Ribbon Communications Apollo 9608 platform, related to insufficient channel limitation for certain endpoints, allows a perpetrator to cause service interruptions.

The vulnerability of the Ribbon Communications Apollo 9608 optical transport network platform lies in the insufficient channel limitation for specified endpoints. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

CVE-2021-21739

A ZTE's product of the transport network access layer has a security vulnerability. Because the system does not sufficiently verify the data reliability, attackers could replace an authenticated optical module on the equipment with an unauthenticated one, bypassing system authentication and...

Nokia NFM-T Security Vulnerability

Nokia NFM-T is a transport network function manager from Nokia of Finland. A security vulnerability exists in Nokia NFM-T version R19.9 that stems from the presence of a SQL injection vulnerability...

Nokia NFM-T Security Vulnerability

Nokia NFM-T is a Transport Network Feature Manager from Nokia of Finland. A security vulnerability exists in Nokia NFM-T version R19.9, which stems from an unprotected credential storage vulnerability that allows a remote, system-authenticated user to read clear-text credentials to access a web...

ZTE ZXMP M721 Privilege and Access Control Vulnerability

The ZTE ZXMP M721 is a metro edge OTN Optical Transport Network device from ZTE Corporation ZTE in China.The ZTE ZXMP M721 has a privilege and access control vulnerability, which stems from the fact that the folder privilege viewed by sftp is 666, which is inconsistent with the actual privilege,...

CVE-2021-21739

A ZTE's product of the transport network access layer has a security vulnerability. Because the system does not sufficiently verify the data reliability, attackers could replace an authenticated optical module on the equipment with an unauthenticated one, bypassing system authentication and...

CVE-2021-21739

A ZTE's product of the transport network access layer has a security vulnerability. Because the system does not sufficiently verify the data reliability, attackers could replace an authenticated optical module on the equipment with an unauthenticated one, bypassing system authentication and...

Authentication flaw

A ZTE's product of the transport network access layer has a security vulnerability. Because the system does not sufficiently verify the data reliability, attackers could replace an authenticated optical module on the equipment with an unauthenticated one, bypassing system authentication and...

CVE-2021-21739

A ZTE's product of the transport network access layer has a security vulnerability. Because the system does not sufficiently verify the data reliability, attackers could replace an authenticated optical module on the equipment with an unauthenticated one, bypassing system authentication and...

CVE-2021-21739

CVE-2021-21739 affects ZTE ZXCTN 6120H with firmware version 5.10.00B24. The root cause is insufficient verification of data reliability, enabling an attacker to replace an authenticated optical module with an unauthenticated one and bypass system authentication/detection, thereby affecting signa...