7 matches found
CVE-2020-6879
Some ZTE devices have input verification vulnerabilities. The devices support configuring a static prefix through the web management page. The restriction of the front-end code can be bypassed by constructing a POST request message and sending the request to the creation of a static routing rule...
ZTE多款产品 安全漏洞
ZTE ZXHN H168N and others are products of ZTE Corporation ZTE, China.ZTE ZXHN H168N is a router.ZTE ZXHN E500 is a wireless router.ZTE ZXHN H168A is a wireless router. A security vulnerability exists in various ZTE products, which stems from the presence of a stack-based buffer overflow...
CVE-2020-6879
Some ZTE devices have input verification vulnerabilities. The devices support configuring a static prefix through the web management page. The restriction of the front-end code can be bypassed by constructing a POST request message and sending the request to the creation of a static routing rule...
CVE-2020-6879
Some ZTE devices have input verification vulnerabilities. The devices support configuring a static prefix through the web management page. The restriction of the front-end code can be bypassed by constructing a POST request message and sending the request to the creation of a static routing rule...
Design/Logic Flaw
Some ZTE devices have input verification vulnerabilities. The devices support configuring a static prefix through the web management page. The restriction of the front-end code can be bypassed by constructing a POST request message and sending the request to the creation of a static routing rule...
CVE-2020-6879
CVE-2020-6879 affects ZXHN Z500 V1.0.0.2B1.1000 and ZXHN F670L V1.1.10P1N2E. The web management UI allows configuring a static prefix, but the front-end restriction can be bypassed by crafting a POST request to the static routing rule creation interface. The backend does not adequately validate a...
ZTE ZXHN F670 and ZTE ZXHN H108N Input Validation Error Vulnerability
The ZTE ZXHN F670 and the ZTE ZXHN H108N are both modems from China's ZTE Corporation ZTE. An input validation error vulnerability exists in some of the ZTE devices, which stems from the fact that these devices support configuration of static prefixes via a web management page. It is possible to...