CVE-2021-21731

Published: Apr 13, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

A CSRF vulnerability exists in the management page of a ZTE product.The vulnerability is caused because the management page does not fully verify whether the request comes from a trusted user. The attacker could submit a malicious request to the affected device to delete the data. This affects: ZXCLOUD iRAI All versions up to KVM-ProductV6.03.04

Vendor	Product	Versions
n/a	ZXCLOUD iRAI	affected `All versions up to KVM-ProductV6.03.04`

References

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1014824

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-21731

Description

Affected Products

References