Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2015-7251
ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE have a hardcoded password of root for the root account, which allows remote malicious users to obtain administrative access via a TELNET session.
Zte Zxhn H108n R1a Firmware
1 EDB exploit
935
VMScore
CVE-2014-0329
The TELNET service on the ZTE ZXV10 W300 router 2.1.0 has a hardcoded password ending with airocon for the admin account, which allows remote malicious users to obtain administrative access by leveraging knowledge of the MAC address characters present at the beginning of the pass...
Zte Zxv10 W300 2.1.0
1 EDB exploit
905
VMScore
CVE-2015-7258
ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated users to obtain user passwords by displaying user information in a Telnet connection.
Zte Zxv10 W300 Firmware W300v2.1.0f Er7 Pe O57
Zte Zxv10 W300 Firmware W300v2.1.0h Er7 Pe O57
1 EDB exploit
905
VMScore
CVE-2015-7259
ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow user accounts to have multiple valid username and password pairs, which allows remote authenticated users to login to a target account via any of its username and password pairs.
Zte Zxv10 W300 Firmware W300v2.1.0f Er7 Pe O57
Zte Zxv10 W300 Firmware W300v2.1.0h Er7 Pe O57
1 EDB exploit
890
VMScore
CVE-2019-3416
All versions up to V81511329.1008 of ZTE ZXV10 B860A products are impacted by input validation vulnerability. Due to input validation, unauthorized users can take advantage of this vulnerability to control the user terminal system.
Zte Zxv10 B860a Firmware
890
VMScore
CVE-2018-7364
All versions up to ZXINOS-RESV1.01.43 of the ZTE ZXIN10 product European region are impacted by improper access control vulnerability. Due to improper access control to devcomm process, an unauthorized remote attacker can exploit this vulnerability to execute arbitrary code with ...
Zte Zxin10
890
VMScore
CVE-2017-10932
All versions prior to V12.17.20 of the ZTE Microwave NR8000 series products - NR8120, NR8120A, NR8120, NR8150, NR8250, NR8000 TR and NR8950 are the applications of C/S architecture using the Java RMI service in which the servers use the Apache Commons Collections (ACC) library th...
Zte Nr8120 Firmware -
Zte Nr8120a Firmware -
Zte Nr8150 Firmware -
Zte Nr8250 Firmware -
Zte Nr8000tr Firmware -
Zte Nr8950 Firmware -
890
VMScore
CVE-2017-3216
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated malicious user to gain administrator access to the device by performing an administrator password change on the device via...
Greenpacket Ox350 Firmware -
Huawei Bm2022 Firmware -
Huawei Hes-309m Firmware -
Huawei Hes-319m Firmware -
Huawei Hes-319m2w Firmware -
Huawei Hes-339m Firmware -
Mada Soho Wireless Router Firmware -
Zte Ox-330p Firmware -
Zyxel Max218m Firmware -
Zyxel Max218m1w Firmware -
Zyxel Max218mw Firmware -
Zyxel Max308m Fimware -
Zyxel Max318m Firmware -
Zyxel Max338m Firmware -
890
VMScore
CVE-2014-9183
ZTE ZXDSL 831CII has a default password of admin for the admin account, which allows remote malicious users to gain administrator privileges.
Zte Zxdsl 831cii
890
VMScore
CVE-2014-2321
web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote malicious users to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials.
Zte F660 -
Zte F460 -
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »