Lucene search
K

42 matches found

Packet Storm
Packet Storm
added 2026/05/26 12:0 a.m.68 views

📄 ZTE ZXHN H168N 3.5 Credential Disclosure

The ZTE ZXHN H168N V3.5 firmware exposes quick-setup wizard endpoints that return PPPoE credentials ADUsername, VDUsername and the WLAN KeyPassphrase via the GetPassword action without requiring authentication. The firmware routing allowlists these endpoints through a QuickSetupEnable branch. In...

6.5CVSS6.6AI score0.00921EPSS
Exploits2
Packet Storm
Packet Storm
added 2026/05/20 12:0 a.m.74 views

📄 ZTE ZXHN H168N 3.6 Credential Leak / Admin Compromise

ZTE ZXHN H168N version 3.5 suffers from a password leak vulnerability that leads to full administrative compromise. Title: ZTE ZXHN H168N V3.5 - Unauthenticated Wizard Credential Leak to Full Admin Compromise Date: 2026-05-20 Author: Mina Nageh Salalma Monx Research CVE: CVE-2021-21735 Vendor: ZT...

6.5CVSS6.6AI score0.00921EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2026/05/06 12:0 a.m.6 views

CVE-2026-34473

Unauthenticated DoS in ZTE H8102E, H168N, H167A, H199A, H288A, H198A, H267A, H267N, H268A, H388X, H196A, H369A, H268N, H208N, H367N, H181A, and H196Q. A denial-of-service condition can be triggered against the router's web interface by sending an oversized application/x-www-form-urlencoded POST...

7.5CVSS5.8AI score0.02376EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-8907

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00921EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-8901

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00379EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-8902

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01002EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:11 p.m.22 views

CVE-2021-21729

Some ZTE products have CSRF vulnerability. Because some pages lack CSRF random value verification, attackers could perform illegal authorization operations by constructing messages.This affects: ZXHN H168N V3.5.0EG1T5TE, V2.5.5, ZXHN H108N V2.5.5BTMT1...

6.5CVSS7AI score0.00379EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:11 p.m.7 views

CVE-2021-21730

A ZTE product is impacted by improper access control vulnerability. The attacker could exploit this vulnerability to access CLI by brute force attacks.This affects: ZXHN H168N V3.5.0TY.T6...

9.8CVSS6.8AI score0.01002EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:19 p.m.6 views

CVE-2021-21735

A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up t...

6.5CVSS6.3AI score0.00921EPSS
Exploits2References1
Exploit DB
Exploit DB
added 2025/04/14 12:0 a.m.207 views

ZTE ZXHN H168N 3.1 - Remote Code Execution (RCE) via authentication bypass

Exploit Title: ZTE ZXHN H168N 3.1 - RCE via authentication bypass Author: l34n / tasos meletlidis Exploit Blog: https://i0.rs/blog/finding-0click-rce-on-two-zte-routers/ import http.client, requests, os, argparse, struct, zlib from io import BytesIO from os import stat from Crypto.Cipher import A...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2024/09/16 12:0 a.m.3 views

ZTE多款产品 安全漏洞

ZTE ZXHN H168N and others are products of ZTE Corporation ZTE, China.ZTE ZXHN H168N is a router.ZTE ZXHN E500 is a wireless router.ZTE ZXHN H168A is a wireless router. A security vulnerability exists in various ZTE products, which stems from the presence of a stack-based buffer overflow...

9.8CVSS7.6AI score0.00483EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/16 12:0 a.m.3 views

ZTE多款产品 安全漏洞

ZTE ZXHN H168N and others are products of ZTE Corporation ZTE, China.ZTE ZXHN H168N is a router.ZTE ZXHN H168A is a wireless router.ZTE ZXHN E1600 is a Wi-Fi 6 router. A security vulnerability exists in various ZTE products, which stems from the presence of a stack-based buffer overflow...

8.1CVSS7.4AI score0.0038EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/16 12:0 a.m.3 views

ZTE多款产品 安全漏洞

ZTE ZXHN H168N and others are products of ZTE Corporation ZTE of China.ZTE ZXHN H168N is a router.ZTE ZXHN E500 is a wireless router.ZTE ZXHN H168A is a wireless router. A security vulnerability exists in various ZTE products, which stems from the presence of a stack-based buffer overflow...

9.8CVSS7.6AI score0.00483EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/16 12:0 a.m.7 views

ZTE多款产品 安全漏洞

ZTE ZXHN H168N and others are products of ZTE Corporation ZTE, China.ZTE ZXHN H168N is a router.ZTE ZXHN E500 is a wireless router.ZTE ZXHN H168A is a wireless router. A security vulnerability exists in various ZTE products, which stems from a local file inclusion vulnerability that can be...

8.1CVSS6.9AI score0.00561EPSS
Exploits0References2
OSV
OSV
added 2021/06/10 12:15 p.m.3 views

CVE-2021-21735

A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up t...

6.5CVSS5.7AI score0.00921EPSS
Exploits2References1
NVD
NVD
added 2021/06/10 12:15 p.m.11 views

CVE-2021-21735

A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up t...

6.5CVSS0.00921EPSS
Exploits2References2
Prion
Prion
added 2021/06/10 12:15 p.m.18 views

Design/Logic Flaw

A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up t...

4CVSS6.1AI score0.00921EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2021/06/10 11:18 a.m.52 views

CVE-2021-21735

CVE-2021-21735 concerns a ZTE ZXHN H168N router with an information-leak vulnerability caused by improper permission settings. An attacker with ordinary user permissions can access sensitive user information through the wizard page without authentication, affecting all versions up to 3.5.0_EG1T4_...

6.5CVSS6.1AI score0.00921EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2021/06/10 11:18 a.m.21 views

CVE-2021-21735

A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up t...

6.4AI score0.00921EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2021/06/10 12:0 a.m.9 views

PT-2021-14746

Name of the Vulnerable Software and Affected Versions ZXHN H168N versions prior to V3.5.0 EG1T4 TE Description An information leak exists due to improper permission settings. An attacker with ordinary user permissions can obtain sensitive user information, including PPPoE and WLAN secrets, withou...

6.5CVSS6.7AI score0.00921EPSS
Exploits2References11
Rows per page
Query Builder