Zxv10 W300 Firmware Security Vulnerabilities and Issues — Zxv10 W300 Firmware CVE List

Lucene search

ZteZxv10 W300 Firmware

3 matches found

CVE•added 2017/08/24 8:29 p.m.•50 views

CVE-2015-7259

ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow user accounts to have multiple valid username and password pairs, which allows remote authenticated users to login to a target account via any of its username and password pairs.

9CVSS8.4AI score0.33338EPSS

CVE•added 2017/08/24 8:29 p.m.•41 views

CVE-2015-7257

ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated non-administrator users to change the admin password by intercepting an outgoing password change request, and changing the username parameter from "support" to "admin".

8.5CVSS7.9AI score0.16737EPSS

CVE•added 2017/08/24 8:29 p.m.•39 views

CVE-2015-7258

ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated users to obtain user passwords by displaying user information in a Telnet connection.

9CVSS8.1AI score0.32589EPSS