Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in ZTE ZXDSL 831CII allow remote attackers to hijack the authentication of administrators for requests that disable modem lan ports via the (1) enblftp, (2) enblhttp, (3) enblsnmp, (4) enbltelnet, (5) enbltftp, (6) enblicmp, or (7) enblssh parameter to accesslocal.cmd.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ZTE ZXDSL 831CII 跨站请求伪造漏洞
Vulnerability Description
ZTE ZXDSL 831CII是中国中兴通讯(ZTE)公司的一款ADSL调制解调器(Modem)产品。 ZTE ZXDSL 831CII中存在跨站请求伪造漏洞,该漏洞源于accesslocal.cmd文件没有充分过滤多个参数(enblftp、enblhttp、enblsnmp、enbltelnet、enbltftp、enblicmp和enblssh)。远程攻击者可利用该漏洞禁用调制解调器的局域网端口。
CVSS Information
N/A
Vulnerability Type
N/A