VYPR
High severity7.5NVD Advisory· Published Sep 19, 2017· Updated Jun 17, 2026

CVE-2017-10931

CVE-2017-10931

Description

The ZXR10 1800-2S before v3.00.40 incorrectly restricts the download of the file directory range for WEB users, resulting in the ability to download any files and cause information leaks such as system configuration.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:o:zte:zxr10_160_firmware:*:*:*:*:*:*:*:*
    Range: <3.00.40
  • Zte/ZXR10 1800-2S2 versions
    cpe:2.3:o:zte:zxr10_1800-2s_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:zte:zxr10_1800-2s_firmware:*:*:*:*:*:*:*:*range: <3.00.40
    • (no CPE)range: All versions prior to V3.00.40
  • cpe:2.3:o:zte:zxr10_2800-4_firmware:*:*:*:*:*:*:*:*
    Range: <3.00.40
  • cpe:2.3:o:zte:zxr10_3800-8_firmware:*:*:*:*:*:*:*:*
    Range: <3.00.40

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.