Vulnerability Details CVE-2019-3411
All versions up to BD_R218V2.4 of ZTE MF920 product are impacted by information leak vulnerability. Due to some interfaces can obtain the WebUI login password without login, an attacker can exploit the vulnerability to obtain sensitive information about the affected components.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.2%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 5.0
References
Products affected by CVE-2019-3411
-
cpe:2.3:h:zte:mf920:-
-
cpe:2.3:o:zte:mf920_firmware:*