Описание
A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up to V3.5.0_EG1T4_TE.
Уязвимые конфигурации
Конфигурация 1Версия до 3.5.0_eg1t4_te (включая)
Одновременно
cpe:2.3:o:zte:zxhn_h168n_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxhn_h168n:-:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00148
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-281
Связанные уязвимости
github
больше 3 лет назад
A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up to V3.5.0_EG1T4_TE.
EPSS
Процентиль: 36%
0.00148
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-281