CVE-2018-7362
CVE-2018-7362
In short
The ZTE ZXHN F670 router has a flaw that fails to properly check user permissions, allowing someone without authorization to perform administrative actions on the device. This is dangerous because an attacker could change settings, access sensitive data, or disable security features.
Technical detail
The vulnerability stems from improper access control mechanisms in ZTE ZXHN F670 up to version V1.1.10P3T18, allowing unauthenticated or low-privileged users to execute unauthorized administrative operations. The attack vector is network-based with no special preconditions, potentially enabling complete compromise of router configuration and data confidentiality.
Summary generated and translated by AI from the official description.
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper access control vulnerability, which may allows an unauthorized user to perform unauthorized operations on the router.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
ZTE · ZXHN F670Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →