Statement of vulnerabilities in ZTE home gateway ZXHN H108N R1A

UpdateNov 18th, 2015

 

CVE IDs

CVE-2015-7248

CVE-2015-7249

CVE-2015-7250

CVE-2015-7251

CVE-2015-7252

 

CVSSv2 Score

Base Score: 8.3 (AV:A/AC:L/Au:N/C:C/I:C/A:C)

Severity ranking: High

 

Statement

CVE-2015-7248CVE-2015-7249CVE-2015-7250CVE-2015-7251CVE-2015-7252 were existed in ZTE home gateway ZXHN H108N R1A which was upgraded to ZXHN H108N V4.0 (software version ZTE.bhs.ZXHNH108NR1A.k_PE) in November 2014. The vulnerabilities mentioned herein are all fixed. ZTE recommends you choose newer version of home gateway product for the purpose of better security.

 

Acknowledgement:

Thanks to Karn Ganeshen for reporting these vulnerabilities to ZTE PSIRT.

Reference

http://www.kb.cert.org/vuls/id/391604

 

Supporting team contacts

1.  ZTE GCSC hotline:

0755-26770800

800-830-1118

400-830-1118

2.  Product forum at ZTE Support website.

 

Feedback Channel

If you need to feedback or report security vulnerabilities related to ZTE products, or get ZTE product security incident response service and vulnerability information, please contact ZTE PSIRT: psirt@zte.com.cn, PGP key ID: FF095577.
 
[Close]