CVE-2017-10931

Summary

The ZXR10 1800-2S before v3.00.40 incorrectly restricts the download of the file directory range for WEB users, resulting in the ability to download any files and cause information leaks such as system configuration.

Affected Software

VendorProductVersion RangeStatus
ZTEZX10 1800-2SAll versions prior to V3.00.40affected

Weaknesses

  • Path Traversal

ADP Enrichment

CVE Program Container

Additional References

References