Absolute Path Traversal Vulnerability in ZTE ZXHN H108N R1A Devices

Absolute Path Traversal Vulnerability in ZTE ZXHN H108N R1A Devices

CVE-2015-7250 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Absolute path traversal vulnerability in cgi-bin/webproc on ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE allows remote attackers to read arbitrary files via a full pathname in the getpage parameter.

Learn more about our Web App Pen Testing.