Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10 F822 V1.4.3T6, ZXA10 F819 V1.2.1T5, ZXA10 F832 V1.1.1T7, ZXA10 F839 V1.1.0T8, ZXA10 F809 V3.2.1T1, ZXA10 F822P V1.1.1T7, ZXA10 F832 V2.00.00.01
References
Link | Resource |
---|---|
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: zte
Published: 2021-05-28T11:45:42
Updated: 2021-05-28T11:45:42
Reserved: 2021-01-04T00:00:00
Link: CVE-2021-21734
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-28T12:15:07.603
Modified: 2021-06-10T19:02:12.077
Link: CVE-2021-21734
JSON object: View
Redhat Information
No data.
CWE