What is the CVSS score of CVE-2026-34474?

CVE-2026-34474 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N. EPSS exploitation probability: 0.0%.

Which versions of ZTE ZXHN routers are affected by CVE-2026-34474?

CVE-2026-34474 affects ZTE ZXHN H298A and H108N routers, allowing unauthenticated remote attackers to steal administrator credentials and wireless network keys through the web management interface.

Is there a public PoC exploit available for CVE-2026-34474?

Yes, a public proof-of-concept exploit is available for CVE-2026-34474. Prioritise patching immediately. EPSS: 0.0%.

ZTE ZXHN routers CVE-2026-34474

EUVD-2026-27883 HIGH

Information Exposure (CWE-200)

2026-05-06 mitre

Authentication Bypass Information Disclosure Zte

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Generated

May 07, 2026 - 13:22 vuln.today

CVSS changed

May 07, 2026 - 13:22 NVD

7.5 (HIGH)

CVE Published

May 06, 2026 - 00:00 nvd

HIGH 7.5

DescriptionNVD

Sensitive data exposure leading to admin/WLAN credential leak in ZTE ZXHN H298A 1.1 and H108N 2.6. A crafted request to the router web interface can expose sensitive device and account information. In affected builds, the response may include the administrator password and WLAN PSK, enabling authentication bypass and network compromise. Some firmware versions may expose only partial identifiers (e.g., serial number, ESSID, MAC addresses).

AnalysisAI

Remote unauthenticated attackers can retrieve plaintext administrator passwords and WLAN Pre-Shared Keys from ZTE ZXHN H298A (firmware 1.1) and H108N (firmware 2.6) routers via crafted HTTP requests to the web management interface. The vulnerability enables complete network compromise through credential theft without requiring authentication. …

RemediationAI

Within 24 hours: Identify and inventory all ZTE ZXHN H298A (firmware 1.1) and H108N (firmware 2.6) devices on your network using asset management tools or network scanning. Within 7 days: Implement network segmentation to restrict access to router management interfaces to trusted administrative networks only; disable remote management features if not operationally required. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory