CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability XSS. Due to incomplete input validation, an authorized user can exploit this vulnerability to execute malicious scripts...

5.7CVSS6.4AI score0.00716EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 6:6 p.m.•14 views

CVE-2019-3417

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by command injection vulnerability. Due to insufficient parameter validation check, an authorized user can exploit this vulnerability to take control of user router system...

9CVSS7.4AI score0.01859EPSS

Exploits0References1

CNNVD•added 2020/11/19 12:0 a.m.•5 views

ZTE ZXHN F670 and ZTE ZXHN H108N Input Validation Error Vulnerability

The ZTE ZXHN F670 and the ZTE ZXHN H108N are both modems from China's ZTE Corporation ZTE. An input validation error vulnerability exists in some of the ZTE devices, which stems from the fact that these devices support configuration of static prefixes via a web management page. It is possible to...

3.5CVSS5.9AI score0.00679EPSS

Exploits0References2

CNVD•added 2019/08/20 12:0 a.m.•4 views

ZTE ZXHN F670 Cross-Site Scripting Vulnerability

The ZTE ZXHN F670 is a modem from China's ZTE Corporation ZTE. A cross-site scripting vulnerability exists in the ZTE ZXHN F670. An attacker can exploit this vulnerability to execute client-side code...

5.7CVSS6.4AI score0.00716EPSS

Exploits0References1

CNVD•added 2019/08/20 12:0 a.m.•8 views

ZTE ZXHN F670 Command Injection Vulnerability

The ZTE ZXHN F670 is a modem from China's ZTE Corporation ZTE. A command injection vulnerability exists in the ZTE ZXHN F670. An attacker can exploit this vulnerability to execute illegal commands...

9CVSS7.8AI score0.01859EPSS

Exploits0References1

OSV•added 2019/08/15 3:15 p.m.•5 views

CVE-2019-3418

5.4CVSS6.1AI score0.00716EPSS

Exploits0References1

NVD•added 2019/08/15 3:15 p.m.•13 views

CVE-2019-3418

5.7CVSS5.4AI score0.00716EPSS

Exploits0References1

NVD•added 2019/08/15 3:15 p.m.•14 views

CVE-2019-3417

9CVSS8.6AI score0.01859EPSS

Exploits0References1

Prion•added 2019/08/15 3:15 p.m.•21 views

Cross site scripting

3.5CVSS5.4AI score0.00716EPSS

Exploits0References1Affected Software1

Prion•added 2019/08/15 3:15 p.m.•18 views

Command injection

9CVSS9AI score0.01859EPSS

Exploits0References1Affected Software1

CVE•added 2019/08/15 2:44 p.m.•57 views

CVE-2019-3418

The CVE-2019-3418 entry concerns the ZTE ZXHN F670 family. A cross-site scripting (XSS) vulnerability exists due to incomplete input validation, affecting all versions up to V1.1.10P3T18. An authorized user can trigger the vulnerability to execute malicious scripts (impact: client-side code execu...

5.7CVSS5.4AI score0.00716EPSS

Exploits0References1Affected Software1