Description
Unauthenticated credential disclosure in the wizard interface in ZTE ZXHN H188A V6.0.10P2_TE and V6.0.10P3N3_TE allows unauthenticated attackers on the local network to retrieve sensitive credentials from the router's web management interface, including the default administrator password, WLAN PSK, and PPPoE credentials. In some observed cases, configuration changes may also be performed without authentication.
Published: 2026-03-30
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: Credential disclosure and potential configuration changes
Action: Patch
AI Analysis

Impact

Unauthenticated attackers on a local network can retrieve sensitive information from the ZTE ZXHN H188A router’s web interface, including the default administrator password, WLAN pre-shared key, and PPPoE credentials. In some instances the attacker may also alter router settings without authentication, elevating the risk of unauthorized changes to network configuration. The weakness follows two common categories of insecure design: exposure of confidential data and lack of proper authentication controls.

Affected Systems

The vulnerability affects ZTE ZXHN H188A routers running firmware versions 6.0.10P2_TE and 6.0.10P3N3_TE. Users of these specific firmware releases should verify their device version and consider upgrading if possible.

Risk and Exploitability

With a CVSS score of 7.1 the problem is of moderate to high severity. The EPSS score is below 1 %, indicating low current exploitation likelihood. The vulnerability is not listed in the CISA KEV catalog, but the attack vector is inferred to be local network access without authentication, which is typically achievable for anyone connected to the same LAN. The attacker can easily gather credentials and, in some cases, reconfigure network settings, potentially compromising entire network security.

Generated by OpenCVE AI on April 8, 2026 at 17:56 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the router firmware to the latest release available from ZTE for the ZXHN H188A line.
  • Immediately change any default or weak administrator passwords and secure wireless credentials.
  • Disable remote management and any unused services exposed on the router’s management interface.
  • Apply network segmentation or VLANs to restrict local network users from accessing the router’s web interface.
  • Regularly review firmware updates on the vendor’s website or trusted security advisories.

Generated by OpenCVE AI on April 8, 2026 at 17:56 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 26 May 2026 13:45:00 +0000

Type Values Removed Values Added
References

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Title Unauthenticated Access to ZTE ZXHN H188A Router Credentials

Wed, 08 Apr 2026 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Zte zxhn H188a Firmware
CPEs cpe:2.3:h:zte:zxhn_h188a:-:*:*:*:*:*:*:*
cpe:2.3:o:zte:zxhn_h188a_firmware:6.0.10p2_te:*:*:*:*:*:*:*
cpe:2.3:o:zte:zxhn_h188a_firmware:6.0.10p3n3_te:*:*:*:*:*:*:*
Vendors & Products Zte zxhn H188a Firmware

Fri, 03 Apr 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Zte
Zte zxhn H188a
Vendors & Products Zte
Zte zxhn H188a

Tue, 31 Mar 2026 03:00:00 +0000

Type Values Removed Values Added
Title Unauthenticated Access to ZTE ZXHN H188A Router Credentials

Mon, 30 Mar 2026 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200
CWE-306
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 30 Mar 2026 16:00:00 +0000

Type Values Removed Values Added
Description Unauthenticated credential disclosure in the wizard interface in ZTE ZXHN H188A V6.0.10P2_TE and V6.0.10P3N3_TE allows unauthenticated attackers on the local network to retrieve sensitive credentials from the router's web management interface, including the default administrator password, WLAN PSK, and PPPoE credentials. In some observed cases, configuration changes may also be performed without authentication.
References

Subscriptions

Zte Zxhn H188a Zxhn H188a Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-26T05:20:49.814Z

Reserved: 2026-03-27T00:00:00.000Z

Link: CVE-2026-34472

cve-icon Vulnrichment

Updated: 2026-05-26T05:20:49.814Z

cve-icon NVD

Status : Modified

Published: 2026-03-30T16:16:07.703

Modified: 2026-05-26T07:16:18.260

Link: CVE-2026-34472

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-08T20:00:51Z

Weaknesses