CVE-2021-21748

ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zte:mf971r_firmware:v1.0.0b05:*:*:*:*:*:*:*
cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:zte:mf971r_firmware:1v1.0.0b06:*:*:*:*:*:*:*
cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:zte:mf971r_firmware:2v1.0.0b03:*:*:*:*:*:*:*
cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:zte:mf971r_firmware:s2v1.0.0b03:*:*:*:*:*:*:*
cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:zte:mf971r_firmware:sv1.0.0b05:*:*:*:*:*:*:*
cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:48

Type Values Removed Values Added
References () https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764 - Vendor Advisory () https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764 - Vendor Advisory

Information

Published : 2021-10-20 16:15

Updated : 2024-11-21 05:48


NVD link : CVE-2021-21748

Mitre link : CVE-2021-21748

CVE.ORG link : CVE-2021-21748


JSON object : View

Products Affected

zte

  • mf971r_firmware
  • mf971r
CWE
CWE-787

Out-of-bounds Write