ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency between the front and back verifications when configuring the large screen page, an attacker with high privileges could exploit this vulnerability to tamper with the URL and cause service exception.
References
Link | Resource |
---|---|
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1021884 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: zte
Published: 2021-12-27T18:48:25
Updated: 2021-12-27T18:48:25
Reserved: 2021-01-04T00:00:00
Link: CVE-2021-21751
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-27T19:15:08.060
Modified: 2023-08-08T14:22:24.967
Link: CVE-2021-21751
JSON object: View
Redhat Information
No data.
CWE