CVE-2018-7357
CVE-2018-7357
In short
The ZTE ZXHN H168N router has a flaw that allows unauthorized users to gain access without proper credentials. This means someone could potentially control your router and intercept your internet traffic.
Technical detail
CVE-2018-7357 is an improper access control vulnerability in ZTE ZXHN H168N (versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7, V2.2.0_PK11T) that permits unauthorized access to the device. The vulnerability stems from insufficient authentication mechanisms, enabling an attacker to bypass login controls and gain administrative or user-level access without valid credentials.
Summary generated and translated by AI from the official description.
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper access control vulnerability, which may allow an unauthorized user to gain unauthorized access.
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
ZTE · ZXHN H168Npublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/45972/unverifiedexploitdbwww.exploit-db.com/exploits/45972unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →