CVE-2017-10935

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
25/07/2018
Last modified:
03/10/2019

Description

All versions prior to ZSRV2 V3.00.40 of the ZTE ZXR10 1800-2S products allow remote authenticated users to bypass the original password authentication protection to change other user's password.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:zte:zxr10_1800-2s_firmware:*:*:*:*:*:*:*:* 3.00.40 (excluding)
cpe:2.3:h:zte:zxr10_1800-2s:-:*:*:*:*:*:*:*