Authentication Bypass and Credential Disclosure in ZTE ZXHN H108N R1A and ZXV10 W300 Devices

Authentication Bypass and Credential Disclosure in ZTE ZXHN H108N R1A and ZXV10 W300 Devices

CVE-2015-8703 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE and ZXV10 W300 devices W300V1.0.0f_ER1_PE allow remote authenticated users to bypass intended access restrictions, and discover credentials and keys, by reading the configuration file, a different vulnerability than CVE-2015-7248.

Learn more about our User Device Pen Test.