CPE-B1670BCC-F06A-4ADC-BF7C-019A0111268D Detail

CPE Details

ZTE ZXV10 W300 Router

Vendor

zte

Product

zxv10_w300

Version

Created

2014-06-20
15h16 +00:00

Modified

2014-06-20
16h40 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:h:zte:zxv10_w300:-:::::::*

Informations

Vendor

zte

Product

zxv10_w300

Version

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2020-12695	2020-06-08 14h45 +00:00	The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.	7.5	High
CVE-2014-4019	2020-02-20 16h27 +00:00	ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direct request for rom-0.	7.5	High
CVE-2015-7257	2017-08-24 18h00 +00:00	ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated non-administrator users to change the admin password by intercepting an outgoing password change request, and changing the username parameter from "support" to "admin".	7.5	High
CVE-2015-7258	2017-08-24 18h00 +00:00	ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated users to obtain user passwords by displaying user information in a Telnet connection.	8.8	High
CVE-2015-7259	2017-08-24 18h00 +00:00	ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow user accounts to have multiple valid username and password pairs, which allows remote authenticated users to login to a target account via any of its username and password pairs.	8.8	High
CVE-2015-8703	2015-12-30 01h00 +00:00	ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE and ZXV10 W300 devices W300V1.0.0f_ER1_PE allow remote authenticated users to bypass intended access restrictions, and discover credentials and keys, by reading the configuration file, a different vulnerability than CVE-2015-7248.	6.5	Medium
CVE-2014-4018	2014-07-16 12h00 +00:00	The ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via unspecified vectors.	7.8
CVE-2014-4154	2014-07-16 12h00 +00:00	ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the PPPoE/PPPoA password via a direct request for basic/tc2wanfun.js.	5
CVE-2014-4155	2014-06-19 12h00 +00:00	Cross-site request forgery (CSRF) vulnerability in the ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK allows remote attackers to hijack the authentication of administrators for requests that change the admin password via a request to Forms/tools_admin_1.	6.8

ZTE ZXV10 W300 Router

CPE Details

CPE Name: cpe:2.3:h:zte:zxv10_w300:-:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:h:zte:zxv10_w300:-:::::::*