70 matches found
ZTE MF971R - Referer authentication bypass
ZTE MF971R product has a Referer authentication bypass vulnerability. Without CSRF verification, an attackercould use this vulnerability to perform illegal authorization operations by sending a request to the user to click. id: CVE-2021-21745 info: name: ZTE MF971R - Referer authentication bypass...
EUVD-2021-8920
Malicious code in bioql PyPI...
EUVD-2021-8919
Malicious code in bioql PyPI...
EUVD-2021-8918
Malicious code in bioql PyPI...
EUVD-2021-8921
Malicious code in bioql PyPI...
EUVD-2021-8915
Malicious code in bioql PyPI...
EUVD-2021-8916
Malicious code in bioql PyPI...
CVE-2021-21748
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code...
CVE-2021-21745
ZTE MF971R product has a Referer authentication bypass vulnerability. Without CSRF verification, an attackercould use this vulnerability to perform illegal authorization operations by sending a request to the user to click...
CVE-2021-21749
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code...
CVE-2021-21744
ZTE MF971R product has a configuration file control vulnerability. An attacker could use this vulnerability to modify the configuration parameters of the device, causing some security functions of the device to be disabled...
CVE-2021-21747
ZTE MF971R product has reflective XSS vulnerability. An attacker could use the vulnerability to obtain cookie information...
CVE-2021-21746
ZTE MF971R product has reflective XSS vulnerability. An attacker could use the vulnerability to obtain cookie information...
CVE-2021-21743
ZTE MF971R product has a CRLF injection vulnerability. An attacker could exploit the vulnerability to modify the HTTP response header information through a specially crafted HTTP request...
VulnCheck KEV: CVE-2021-21745
ZTE MF971R product has a Referer authentication bypass vulnerability. Without CSRF verification, an attackercould use this vulnerability to perform illegal authorization operations by sending a request to the user to click...
Vulnerability Spotlight: Multiple vulnerabilities in ZTE MF971R LTE router
Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered multiple vulnerabilities in the ZTE MF971R LTE portable router. The MF971R is a portable router with Wi-Fi support and works as an LTE/GSM modem. An attacker could... This is...
ZTE MF971R CRLF Injection Vulnerability
The ZTE MF971R is a Cat 6 LTE mobile Wi-Fi router with download speeds up to 300mbps and upload speeds up to 50mbps.The ZTE MF971R is vulnerable to CRLF injection. An attacker can exploit this vulnerability to modify HTTP response headers via specially crafted HTTP requests...
ZTE MF971R Profile Control Vulnerability
The ZTE MF971R is a Cat 6 LTE mobile Wi-Fi router with download speeds up to 300mbps and upload speeds up to 50mbps.A configuration file control vulnerability exists in the ZTE MF971R. An attacker could exploit the vulnerability to modify the device's configuration parameters, which could result ...
ZTE MF971R Cross-Site Scripting Vulnerability (CNVD-2021-92822)
The ZTE MF971R is a Cat 6 LTE mobile Wi-Fi router with download speeds up to 300mbps and upload speeds up to 50mbps.A reflective cross-site scripting vulnerability exists in the ZTE MF971R. An attacker could use this vulnerability to obtain cookie information...
ZTE MF971R Stack Buffer Overflow Vulnerability (CNVD-2021-92824)
The ZTE MF971R is a Cat 6 LTE mobile Wi-Fi router with download speeds up to 300mbps and upload speeds up to 50mbps.The ZTE MF971R is vulnerable to a stack buffer overflow vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...