Remote Password Disclosure in ZTE ADSL ZXV10 W300 Modems

Remote Password Disclosure in ZTE ADSL ZXV10 W300 Modems

CVE-2015-7258 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated users to obtain user passwords by displaying user information in a Telnet connection.

Learn more about our User Device Pen Test.