cvedb.io
CVE-2018-7363
MEDIUM · CVSS 4.3
EPSS exploitation probability: 0%
Published 2018-11-16T15:29:00.517 · Last modified 2026-06-17T02:03:04.513

Summary

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper authorization vulnerability. Since appviahttp service has no authorization delay, an attacker can be allowed to brute force account credentials.

Affected products

zte — zxhn_f670_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when zte ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.