CVE-2018-7360

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by information exposure vulnerability, which may allow an unauthenticated attacker to get the GPON SN information via appviahttp service.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zte:zxhn_f670_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxhn_f670:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:12

Type Values Removed Values Added
CVSS v2 : 3.3
v3 : 6.5
v2 : 3.3
v3 : 9.6
References () http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383 - Vendor Advisory () http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383 - Vendor Advisory

Information

Published : 2018-11-16 15:29

Updated : 2024-11-21 04:12


NVD link : CVE-2018-7360

Mitre link : CVE-2018-7360

CVE.ORG link : CVE-2018-7360


JSON object : View

Products Affected

zte

  • zxhn_f670_firmware
  • zxhn_f670
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor