CVE-2018-7362

Опубликовано: 16 нояб. 2018

Источник: nvd

CVSS3: 7.5

CVSS3: 8.8

CVSS2: 9

EPSS Низкий

Описание

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper access control vulnerability, which may allows an unauthorized user to perform unauthorized operations on the router.

Ссылки

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383
Vendor Advisory
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:zte:zxhn_f670_firmware:*:*:*:*:*:*:*:*

Версия до 1.1.10p3t18 (исключая)

cpe:2.3:h:zte:zxhn_f670:-:*:*:*:*:*:*:*

EPSS

Процентиль: 42%

0.002

Низкий

7.5 High

CVSS3

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-284

Связанные уязвимости

GHSA-m8x3-h4fm-hpp2

CVSS3: 8.8

github

больше 3 лет назад

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper access control vulnerability, which may allows an unauthorized user to perform unauthorized operations on the router.

EPSS

Процентиль: 42%

0.002

Низкий

7.5 High

CVSS3

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-284