Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    2 vulnerabilities found for zxa10_f819_firmware by zte

    CVE-2021-21734 (GCVE-0-2021-21734)

    Vulnerability from cvelistv5 – Published: 2021-05-28 11:45 – Updated: 2024-08-03 18:23
    VLAI
    Summary
    Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10 F822 V1.4.3T6, ZXA10 F819 V1.2.1T5, ZXA10 F832 V1.1.1T7, ZXA10 F839 V1.1.0T8, ZXA10 F809 V3.2.1T1, ZXA10 F822P V1.1.1T7, ZXA10 F832 V2.00.00.01
    Severity
    No CVSS data available.
    CWE
    • cryptographic issues
    Assigner
    zte
    References
    Impacted products
    Vendor Product Version
    n/a ZTE PON MDU devices Affected: ZXA10 F821 V1.7.0P3T22,ZXA10 F822 V1.4.3T6,ZXA10 F819 V1.2.1T5,ZXA10 F832 V1.1.1T7,ZXA10 F839 V1.1.0T8,ZXA10 F809 V3.2.1T1,ZXA10 F822P V1.1.1T7,ZXA10 F832 V2.00.00.01
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T18:23:29.232Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "ZTE PON MDU devices",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "ZXA10 F821 V1.7.0P3T22,ZXA10 F822 V1.4.3T6,ZXA10 F819 V1.2.1T5,ZXA10 F832 V1.1.1T7,ZXA10 F839 V1.1.0T8,ZXA10 F809 V3.2.1T1,ZXA10 F822P V1.1.1T7,ZXA10 F832 V2.00.00.01"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10 F822 V1.4.3T6, ZXA10 F819 V1.2.1T5, ZXA10 F832 V1.1.1T7, ZXA10 F839 V1.1.0T8, ZXA10 F809 V3.2.1T1, ZXA10 F822P V1.1.1T7, ZXA10 F832 V2.00.00.01"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "cryptographic issues",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-05-28T11:45:42.000Z",
            "orgId": "6786b568-6808-4982-b61f-398b0d9679eb",
            "shortName": "zte"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@zte.com.cn",
              "ID": "CVE-2021-21734",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "ZTE PON MDU devices",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "ZXA10 F821 V1.7.0P3T22,ZXA10 F822 V1.4.3T6,ZXA10 F819 V1.2.1T5,ZXA10 F832 V1.1.1T7,ZXA10 F839 V1.1.0T8,ZXA10 F809 V3.2.1T1,ZXA10 F822P V1.1.1T7,ZXA10 F832 V2.00.00.01"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10 F822 V1.4.3T6, ZXA10 F819 V1.2.1T5, ZXA10 F832 V1.1.1T7, ZXA10 F839 V1.1.0T8, ZXA10 F809 V3.2.1T1, ZXA10 F822P V1.1.1T7, ZXA10 F832 V2.00.00.01"
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "cryptographic issues"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524",
                  "refsource": "MISC",
                  "url": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6786b568-6808-4982-b61f-398b0d9679eb",
        "assignerShortName": "zte",
        "cveId": "CVE-2021-21734",
        "datePublished": "2021-05-28T11:45:42.000Z",
        "dateReserved": "2021-01-04T00:00:00.000Z",
        "dateUpdated": "2024-08-03T18:23:29.232Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-21734 (GCVE-0-2021-21734)

    Vulnerability from nvd – Published: 2021-05-28 11:45 – Updated: 2024-08-03 18:23
    VLAI
    Summary
    Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10 F822 V1.4.3T6, ZXA10 F819 V1.2.1T5, ZXA10 F832 V1.1.1T7, ZXA10 F839 V1.1.0T8, ZXA10 F809 V3.2.1T1, ZXA10 F822P V1.1.1T7, ZXA10 F832 V2.00.00.01
    Severity
    No CVSS data available.
    CWE
    • cryptographic issues
    Assigner
    zte
    References
    Impacted products
    Vendor Product Version
    n/a ZTE PON MDU devices Affected: ZXA10 F821 V1.7.0P3T22,ZXA10 F822 V1.4.3T6,ZXA10 F819 V1.2.1T5,ZXA10 F832 V1.1.1T7,ZXA10 F839 V1.1.0T8,ZXA10 F809 V3.2.1T1,ZXA10 F822P V1.1.1T7,ZXA10 F832 V2.00.00.01
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T18:23:29.232Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "ZTE PON MDU devices",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "ZXA10 F821 V1.7.0P3T22,ZXA10 F822 V1.4.3T6,ZXA10 F819 V1.2.1T5,ZXA10 F832 V1.1.1T7,ZXA10 F839 V1.1.0T8,ZXA10 F809 V3.2.1T1,ZXA10 F822P V1.1.1T7,ZXA10 F832 V2.00.00.01"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10 F822 V1.4.3T6, ZXA10 F819 V1.2.1T5, ZXA10 F832 V1.1.1T7, ZXA10 F839 V1.1.0T8, ZXA10 F809 V3.2.1T1, ZXA10 F822P V1.1.1T7, ZXA10 F832 V2.00.00.01"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "cryptographic issues",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-05-28T11:45:42.000Z",
            "orgId": "6786b568-6808-4982-b61f-398b0d9679eb",
            "shortName": "zte"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@zte.com.cn",
              "ID": "CVE-2021-21734",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "ZTE PON MDU devices",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "ZXA10 F821 V1.7.0P3T22,ZXA10 F822 V1.4.3T6,ZXA10 F819 V1.2.1T5,ZXA10 F832 V1.1.1T7,ZXA10 F839 V1.1.0T8,ZXA10 F809 V3.2.1T1,ZXA10 F822P V1.1.1T7,ZXA10 F832 V2.00.00.01"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10 F822 V1.4.3T6, ZXA10 F819 V1.2.1T5, ZXA10 F832 V1.1.1T7, ZXA10 F839 V1.1.0T8, ZXA10 F809 V3.2.1T1, ZXA10 F822P V1.1.1T7, ZXA10 F832 V2.00.00.01"
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "cryptographic issues"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524",
                  "refsource": "MISC",
                  "url": "https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015524"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "6786b568-6808-4982-b61f-398b0d9679eb",
        "assignerShortName": "zte",
        "cveId": "CVE-2021-21734",
        "datePublished": "2021-05-28T11:45:42.000Z",
        "dateReserved": "2021-01-04T00:00:00.000Z",
        "dateUpdated": "2024-08-03T18:23:29.232Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }