Skip to main content

Zxdsl 831Cii Firmware

1 CVEs product

Monthly

CVE-2017-16953 HIGH POC THREAT Act Now

connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 18.1%.

Zte Authentication Bypass Zxdsl 831Cii Firmware
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
18.1%
EPSS 18% CVSS 7.5
HIGH POC THREAT Act Now

connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 18.1%.

Zte Authentication Bypass Zxdsl 831Cii Firmware
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy