← back
CVE-2021-21745observed exploitation

CVE-2021-21745

52Vexday Risk Score

Patch now. It exploitation observed by VulnCheck and has a working public exploit.

ssvc Actepss 56%
from disclosure to weapon
Published on NVDOct 20
VulnCheck+824d
exploitation probability
56%top 1% of all CVEs
observed exploitation
yesVulnCheck
ZTE MF971R product has a Referer authentication bypass vulnerability. Without CSRF verification, an attackercould use this vulnerability to perform illegal authorization operations by sending a request to the user to click.
Affected products
n/a · MF971R