4 matches found
CVE-2021-21744
ZTE MF971R product has a configuration file control vulnerability. An attacker could use this vulnerability to modify the configuration parameters of the device, causing some security functions of the device to be disabled...
CVE-2021-21744
ZTE MF971R product has a configuration file control vulnerability. An attacker could use this vulnerability to modify the configuration parameters of the device, causing some security functions of the device to be disabled...
CVE-2021-21744
ZTE MF971R product has a configuration file control vulnerability. An attacker could use this vulnerability to modify the configuration parameters of the device, causing some security functions of the device to be disabled...
CVE-2021-21744
The CVE-2021-21744 issue in ZTE MF971R is a pre-auth configuration file control vulnerability in the web API goform_get_cmd_process path. An unauthenticated attacker can trigger config_entry overwrite by passing a cmd value not in the predefined list, triggering config_update() to write a 0 flag,...