connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET request.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T20:43:59.680Z
Reserved: 2017-11-26T00:00:00
Link: CVE-2017-16953

No data.

Status : Modified
Published: 2017-12-01T17:29:00.620
Modified: 2024-11-21T03:17:18.830
Link: CVE-2017-16953

No data.