VYPR
High severity7.5NVD Advisory· Published Dec 1, 2017· Updated Jun 17, 2026

CVE-2017-16953

CVE-2017-16953

Description

connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zte/ZXDSL 831CII2 versions
    cpe:2.3:o:zte:zxdsl_831cii_firmware:-:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:zte:zxdsl_831cii_firmware:-:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.