CVE-2019-3420

MEDIUM

6.5

Description

All versions up to V2.5.0_EG1T5_TED of ZTE ZXHN H108N product are impacted by an information leak vulnerability. An attacker could exploit the vulnerability to obtain sensitive information and perform unauthorized operations.

CVE Details

CVSS v3.1 Score6.5

SeverityMEDIUM

CVSS VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack VectorADJACENT_NETWORK

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published11/13/2019

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

zte:zxhn_h108nzte:zxhn_h108n_firmware

References

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1011802(psirt@zte.com.cn)

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1011802(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.