Multiple cross-site request forgery (CSRF) vulnerabilities in ZTE ZXDSL 831CII allow remote malicious users to hijack the authentication of administrators for requests that disable modem lan ports via the (1) enblftp, (2) enblhttp, (3) enblsnmp, (4) enbltelnet, (5) enbltftp, (6) enblicmp, or (7) enblssh parameter to accesslocal.cmd.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zteusa zxdsl 831cii - |