CVE-2021-21733

MEDIUM

4.9

Description

The management system of ZXCDN is impacted by the information leak vulnerability. Attackers can make further analysis according to the information returned by the program, and then obtain some sensitive information. This affects ZXCDN V7.01 all versions up to IAMV7.01.01.02.

CVE Details

CVSS v3.1 Score4.9

SeverityMEDIUM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredHIGH

User InteractionNONE

Published5/19/2021

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

zte:zxcdn

Weaknesses (CWE)

CWE-200

References

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015304(psirt@zte.com.cn)

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015304(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.