CVE-2021-21751

Summary

ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency between the front and back verifications when configuring the large screen page, an attacker with high privileges could exploit this vulnerability to tamper with the URL and cause service exception.

Affected Software

VendorProductVersion RangeStatus
n/aZXIN10 CMSAll versions up to ZXOMS-BIGDATA-IOPSWEBV3.01.01.04affected

Weaknesses

  • input verification

ADP Enrichment

CVE Program Container

Additional References

References