Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Zxhn_h108n_firmware
(Zte)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-11-13 | CVE-2019-3420 | All versions up to V2.5.0_EG1T5_TED of ZTE ZXHN H108N product are impacted by an information leak vulnerability. An attacker could exploit the vulnerability to obtain sensitive information and perform unauthorized operations. | Zxhn_h108n_firmware | 6.5 | ||
| 2021-04-13 | CVE-2021-21729 | Some ZTE products have CSRF vulnerability. Because some pages lack CSRF random value verification, attackers could perform illegal authorization operations by constructing messages.This affects: ZXHN H168N V3.5.0_EG1T5_TE, V2.5.5, ZXHN H108N V2.5.5_BTMT1 | Zxhn_h108n_firmware, Zxhn_h168n_firmware | 6.5 | ||
| 2017-08-29 | CVE-2015-7255 | ZTE OX-330P, ZXHN H108N, W300V1.0.0S_ZRD_TR1_D68, HG110, GAN9.8T101A-B, MF28G, ZXHN H108N use non-unique X.509 certificates and SSH host keys, which might allow remote attackers to obtain credentials or other sensitive information via a man-in-the-middle attack, passive decryption attack, or impersonating a legitimate device. | Gan9\.8t101a\-B_firmware, Hg110_firmware, Mf28g_firmware, Ox\-330p_firmware, W300v1\.0\.0s_zrd_tr1_d68_firmware, Zxhn_h108n_firmware | 7.5 |