CVE-2019-3413

CVSS 5.4 MEDIUMEPSS 0.6%

All versions up to V20.18.40.R7.B1of ZTE NetNumen DAP product have an XSS vulnerability. Due to the lack of correct validation of client data in WEB applications, which results in users being hijacked.

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Affected products

ZTE · NetNumen DAP

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1010797