cvedb.io
CVE-2021-37123
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2021-10-11T16:15:07.610 · Last modified 2026-06-17T04:00:00.633

Summary

There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200. The vulnerability is due to that when an user wants to do certain operation, the software does not insufficiently validate the user's identity. Successful exploit could allow the attacker to do certain operations which the user are supposed not to do.

Affected products

huawei — hero-ct060_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when huawei ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.