Vulnerability Details CVE-2017-10935
All versions prior to ZSRV2 V3.00.40 of the ZTE ZXR10 1800-2S products allow remote authenticated users to bypass the original password authentication protection to change other user's password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.7%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 4.0
References
Products affected by CVE-2017-10935
-
cpe:2.3:h:zte:zxr10_1800-2s:-
-
cpe:2.3:o:zte:zxr10_1800-2s_firmware:-