← voltar
CVE-2021-47741

ZBL EPON ONU Broadband Router V100R001 Privilege Escalation via Configuration Endpoint

CVSS 8.7 HIGHEPSS 0.2%CWE-522
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 8.7EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
31 dez 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
ZBL EPON ONU Broadband Router V100R001 contains a privilege escalation vulnerability that allows limited administrative users to elevate access by sending requests to configuration endpoints. Attackers can exploit the vulnerability by accessing the configuration backup or password page to disclose the super user password and gain additional privileged functionalities.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
Zblchina · ZBL EPON ONU Broadband Router

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://web.archive.org/web/20211220094023/http://www.wd-thailand.com/https://www.exploit-db.com/exploits/49737https://www.vulncheck.com/advisories/zbl-epon-onu-broadband-router-vr-privilege-escalation-via-configuration-endpointhttps://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5647.phphttp://www.zblchina.com