6 matches found
CVE-2019-3428
The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. An attacker could directly access the management portal in HTTP, resulting in users’ information leakage...
CVE-2019-3427
The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a code injection vulnerability. An attacker could exploit the vulnerability to inject malicious code into the management page, resulting in users’ information leakage...
CVE-2019-3428
The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. An attacker could directly access the management portal in HTTP, resulting in users’ information leakage...
Code injection
The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a code injection vulnerability. An attacker could exploit the vulnerability to inject malicious code into the management page, resulting in users’ information leakage...
CVE-2019-3428
CVE-2019-3428 affects ZTE ZXCDN IAMWEB v6.01.03.01. The issue is a configuration error that allows an attacker to directly access the management portal over HTTP, resulting in users’ information leakage. The available documents consistently describe a misconfiguration leading to exposure of manag...
CVE-2019-3427
CVE-2019-3427 affects ZTE ZXCDN IAMWEB 6.01.03.01. A code injection vulnerability allows an attacker to inject malicious code into the management page, causing users’ information leakage. Root cause cited as improper filtering of external input during code segment construction. Public sources (NV...