Vulnerabilities > CVE-2014-9183 - Credentials Management vulnerability in ZTE Zxdsl 831Cii

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
zte
CWE-255
critical

Summary

ZTE ZXDSL 831CII has a default password of admin for the admin account, which allows remote attackers to gain administrator privileges.

Vulnerable Configurations

Part Description Count
Hardware
Zte
1

Common Weakness Enumeration (CWE)

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/129016/zte831cii-xsrfxsshardcoded.txt
idPACKETSTORM:129016
last seen2016-12-05
published2014-11-07
reporterPaulos Yibelo
sourcehttps://packetstormsecurity.com/files/129016/ZTE-831CII-Hardcoded-Credential-XSS-CSRF.html
titleZTE 831CII Hardcoded Credential / XSS / CSRF