Описание
All versions up to BD_R218V2.4 of ZTE MF920 product are impacted by information leak vulnerability. Due to some interfaces can obtain the WebUI login password without login, an attacker can exploit the vulnerability to obtain sensitive information about the affected components.
Уязвимые конфигурации
Конфигурация 1Версия до bd_r218v2.4 (исключая)
Одновременно
cpe:2.3:o:zte:mf920_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:mf920:-:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00282
Низкий
8.1 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-306
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
All versions up to BD_R218V2.4 of ZTE MF920 product are impacted by information leak vulnerability. Due to some interfaces can obtain the WebUI login password without login, an attacker can exploit the vulnerability to obtain sensitive information about the affected components.
EPSS
Процентиль: 51%
0.00282
Низкий
8.1 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-306