CVE-2021-21744

EPSS 0.24%
Published 20.10.2021 16:15:08
Last modified 21.11.2024 05:48:55
Source psirt@zte.com.cn
Teams watchlist Login
Open Login

ZTE MF971R product has a configuration file control vulnerability. An attacker could use this vulnerability to modify the configuration parameters of the device, causing some security functions of the device to be disabled.

Affected products Warnungen 0 Metrics 3 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Zte ≫ Mf971r Firmware Versionv1.0.0b05

Zte ≫ Mf971r

Zte ≫ Mf971r Firmware Version1v1.0.0b06

Zte ≫ Mf971r

Zte ≫ Mf971r Firmware Version2v1.0.0b03

Zte ≫ Mf971r

Zte ≫ Mf971r Firmware Versions2v1.0.0b03

Zte ≫ Mf971r

Zte ≫ Mf971r Firmware Versionsv1.0.0b05

Zte ≫ Mf971r

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.24%	0.446

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-21744

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-21744

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-21744

EUVD