Information disclosure in Zte Zxcdn
CVE-2021-21733
The management system of ZXCDN is impacted by the information leak vulnerability. Attackers can make further analysis according to the information returned by the program, and then obtain some sensitive information. This affects ZXCDN V7.0…
Vulnerability class: Information Disclosure
EPSS: 0.008 (51.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.9 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N.
Affected products
- Zte Zxcdn
- N/a <zxcdn V7.01> — versions <All versions up to IAMV7.01.01.02>
Weakness classification (CWE)
References
- psirt@zte.com.cn (x_refsource_MISC, Vendor Advisory)
Frequently asked questions
- What is CVE-2021-21733?
- CVE-2021-21733 is a medium-severity vulnerability in Zte Zxcdn, classified under Information Disclosure. CVSS score: 4.9/10. Published 2021-05-19.
- How severe is CVE-2021-21733?
- Medium severity. CVSS v3 base score is 4.9 out of 10.