CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-7363

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper authorization vulnerability. Since appviahttp service has no authorization delay, an attacker can be allowed to brute force account credentials.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.1%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 3.3

References

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383

Products affected by CVE-2018-7363

Zte » Zxhn F670 » Version: N/A

cpe:2.3:h:zte:zxhn_f670:-
Zte » Zxhn F670 Firmware » Version: N/A

cpe:2.3:o:zte:zxhn_f670_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-7363

Products

Pricing

Contact Us