Zte Zxv10 W300 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Zte Zxv10 W300 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2015-7258 — CVSS 8.8 (high): ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated users to obtain user passwords by…
CVE-2015-7259 — CVSS 8.8 (high): ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow user accounts to have multiple valid username and…
CVE-2014-4018 — CVSS 7.8 (high): The ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK has a default password of admin for the admin account, which makes it easier for…
CVE-2015-7257 — CVSS 7.5 (high): ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated non-administrator users to change…
CVE-2014-4019 — CVSS 7.5 (high): ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control…
CVE-2014-4155 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in the ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK allows remote attackers to…
CVE-2014-4154 — CVSS 5.0 (medium): ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control…