CVE-2020-6879

Vulnerability

The ZTE ZXHN Z500 (V1.0.0.2B1.1000) and ZXHN F670L (V1.1.10P1N2E) routers contain input verification vulnerabilities. The web management interface enforces front-end restrictions for configuring a static prefix, but an attacker can bypass these by crafting a POST request directly to the static routing rule creation interface. The backend fails to validate the input, enabling parameter tampering [1].

Exploitation

An attacker must be on the same local area network (adjacent) and possess low-privileged credentials. No user interaction is required. The attack involves sending a specially crafted POST request to the vulnerable endpoint, circumventing client-side checks [1].

Impact

Successful exploitation allows the attacker to manipulate static routing parameters, potentially altering network traffic flows. Integrity is compromised, but confidentiality and availability are unaffected. The CVSS 3.1 base score is 3.5 (Low) [1].

Mitigation

ZTE has released fixed firmware versions: ZXHN Z500 V1.0.1.1B1.1000 and ZXHN F670L V1.1.10P2N2. No workarounds are documented; users should upgrade to the resolved versions [1].