{"vulnerability": "cve-2021-2173", "sightings": [{"uuid": "fc36b29e-b999-4705-a423-9ec72e084073", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21737", "type": "seen", "source": "https://t.me/cibsecurity/25670", "content": "\u203c CVE-2021-21737 \u203c\n\nA smart STB product of ZTE is impacted by a permission and access control vulnerability. Due to insufficient protection of system application, attackers could use this vulnerability to tamper with the system desktop and affect system customization functions. This affects: ZXV10 B860H V5.0, V83011303.0010, V83011303.0016\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-24T14:18:21.000000Z"}, {"uuid": "6711ec9b-e46e-4435-b907-90456c9bc1df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21735", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3mmp6j7lche2v", "content": "CVE-2021-21735: ZTE H168N wizard whitelist exposed PPPoE and WLAN secrets pre-auth", "creation_timestamp": "2026-05-25T19:10:00.421943Z"}, {"uuid": "0461b522-eb0c-405a-a288-90a00e6fce25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2021-21735", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmve6uvzr325", "content": "\ud83d\udccc CVE-2021-21735: ZTE H168N Router Vulnerability Exposes PPPoE and WLAN Secrets https://www.cyberhub.blog/article/26416-cve-2021-21735-zte-h168n-router-vulnerability-exposes-pppoe-and-wlan-secrets", "creation_timestamp": "2026-05-28T06:07:07.510424Z"}, {"uuid": "02f92e9f-40ab-4e33-815e-fce5cc90e607", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2021-21735", "type": "seen", "source": "https://bsky.app/profile/oxfemale.bsky.social/post/3mmvypdoxnc2c", "content": "Source & attribution. This is an original English rewrite of the writeup \u201cUnauthenticated Information Leak to Full Admin Compromise on ZTE ZXHN H168N (CVE-2021-21735)\u201d by Mina Zekry, published at minanagehsalalma.github.io.\nhttps://core-jmp.org/2026/05/zte-zxhn-h168n-cve-2021-21735-admin-compromise/", "creation_timestamp": "2026-05-28T12:14:15.302191Z"}, {"uuid": "7606abcd-63c6-4e70-86ef-56e404fc14de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21735", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mmsac3s46k2g", "content": "[SECURITY ADVISORY] CVE-2021-21735 - ZTE ZXHN H168N V3.5 Unauthenticated Admin Credential Leak\n\nPosted by m.nageh on May 25-----BEGIN SECURITY ADVISORY----- \n\nAdvisory ID: MONX-2021-001 \nCVE ID: CVE-2021-21735 \nTitle: ZTE ZXHN H168N V3.5 - Unauthenticated Wizard Credential \nDisclo\u2026\n#hackernews #news", "creation_timestamp": "2026-05-27T00:19:21.549923Z"}]}