ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
References
Link | Resource |
---|---|
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764 | Vendor Advisory |
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
21 Nov 2024, 05:48
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764 - Vendor Advisory |
25 Oct 2021, 16:24
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:zte:mf971r_firmware:v1.0.0b05:*:*:*:*:*:*:* cpe:2.3:o:zte:mf971r_firmware:2v1.0.0b03:*:*:*:*:*:*:* cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:* cpe:2.3:o:zte:mf971r_firmware:1v1.0.0b06:*:*:*:*:*:*:* cpe:2.3:o:zte:mf971r_firmware:sv1.0.0b05:*:*:*:*:*:*:* cpe:2.3:o:zte:mf971r_firmware:s2v1.0.0b03:*:*:*:*:*:*:* |
|
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
References | (MISC) https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764 - Vendor Advisory |
20 Oct 2021, 16:29
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-10-20 16:15
Updated : 2024-11-21 05:48
NVD link : CVE-2021-21748
Mitre link : CVE-2021-21748
CVE.ORG link : CVE-2021-21748
JSON object : View
Products Affected
zte
- mf971r_firmware
- mf971r
CWE
CWE-787
Out-of-bounds Write