4 matches found
EUVD-2019-13048
Malware in sbrugna...
Cross site request forgery (csrf)
All versions up to UKBBWF820+1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by Cross-Site Request Forgery vulnerability,which stems from the fact that WEB applications do not adequately verify whether requests come from trusted users. An attacker can exploit this vulnerability to sen...
CVE-2019-3410
All versions up to UKBBWF820+1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by Cross-Site Request Forgery vulnerability,which stems from the fact that WEB applications do not adequately verify whether requests come from trusted users. An attacker can exploit this vulnerability to sen...
CVE-2019-3409
The CVE describes a command injection in ZTE WF820+ LTE Outdoor CPE, affecting UKBB_WF820+_1.0.0B06 and earlier. The root cause is inadequate input/data filtering when constructing executable commands, allowing an attacker to control the user terminal system. Several connected sources (NVD, CNVD,...