Vulnerabilities > ZTE > Mf971R Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-10-20 CVE-2021-21743 Injection vulnerability in ZTE Mf971R Firmware
ZTE MF971R product has a CRLF injection vulnerability.
network
low complexity
zte CWE-74
4.3
2021-10-20 CVE-2021-21745 Cross-Site Request Forgery (CSRF) vulnerability in ZTE Mf971R Firmware
ZTE MF971R product has a Referer authentication bypass vulnerability.
network
low complexity
zte CWE-352
4.3
2021-10-20 CVE-2021-21746 Cross-site Scripting vulnerability in ZTE Mf971R Firmware
ZTE MF971R product has reflective XSS vulnerability.
network
low complexity
zte CWE-79
6.1
2021-10-20 CVE-2021-21747 Cross-site Scripting vulnerability in ZTE Mf971R Firmware
ZTE MF971R product has reflective XSS vulnerability.
network
low complexity
zte CWE-79
6.1