4 matches found
CVE-2019-3418
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability XSS. Due to incomplete input validation, an authorized user can exploit this vulnerability to execute malicious scripts...
ZTE ZXHN F670 Buffer Overflow Vulnerability
The ZTE ZXHN F670 is an ITU-T G.984 and ITU-T g.988 compliant Optical Network Terminal ONT designed for high-end home users. A heap buffer overflow vulnerability exists in 1.1.10P3T18 and earlier versions of the ZTE ZXHN F670, which can be exploited by an attacker to execute arbitrary code...
ZTE ZXHN F670 Improper Authorization Vulnerability
The ZTE ZXHN F670 is an ITU-T G.984 and ITU-T g.988 compliant Optical Network Terminal ONT designed for high-end home users. An improper authorization vulnerability exists in 1.1.10P3T18 and earlier versions of the ZTE ZXHN F670, which can be exploited by an attacker to brute-force break account...
CVE-2018-7363
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper authorization vulnerability. Since appviahttp service has no authorization delay, an attacker can be allowed to brute force account credentials...