CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-10930

The ZXR10 1800-2S before v3.00.40 incorrectly restricts access to a resource from an unauthorized actor, resulting in ordinary users being able to download configuration files to steal information like administrator accounts and passwords.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

Products affected by CVE-2017-10930

Zte » Zxr10 160 » Version: N/A

cpe:2.3:h:zte:zxr10_160:-
Zte » Zxr10 1800-2s » Version: N/A

cpe:2.3:h:zte:zxr10_1800-2s:-
Zte » Zxr10 2800-4 » Version: N/A

cpe:2.3:h:zte:zxr10_2800-4:-
Zte » Zxr10 3800-8 » Version: N/A

cpe:2.3:h:zte:zxr10_3800-8:-
Zte » Zxr10 160 Firmware » Version: N/A

cpe:2.3:o:zte:zxr10_160_firmware:-
Zte » Zxr10 1800-2s Firmware » Version: N/A

cpe:2.3:o:zte:zxr10_1800-2s_firmware:-
Zte » Zxr10 2800-4 Firmware » Version: N/A

cpe:2.3:o:zte:zxr10_2800-4_firmware:-
Zte » Zxr10 3800-8 Firmware » Version: N/A

cpe:2.3:o:zte:zxr10_3800-8_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-10930

Products

Pricing

Contact Us