VYPR

Zxr10 160 Firmware

by Zte

CVEs (2)

  • CVE-2017-10930CriSep 19, 2017
    risk 0.64cvss 9.8epss 0.01

    The ZXR10 1800-2S before v3.00.40 incorrectly restricts access to a resource from an unauthorized actor, resulting in ordinary users being able to download configuration files to steal information like administrator accounts and passwords.

  • CVE-2017-10931HigSep 19, 2017
    risk 0.49cvss 7.5epss 0.01

    The ZXR10 1800-2S before v3.00.40 incorrectly restricts the download of the file directory range for WEB users, resulting in the ability to download any files and cause information leaks such as system configuration.