First published: Wed Jul 25 2018(Updated: )
SQL injection vulnerability in all versions prior to V4.01.01 of the ZTE ZXCDN-SNS product allows remote attackers to execute arbitrary SQL commands via the aoData parameter, resulting in the disclosure of database information.
Credit: psirt@zte.com.cn
Affected Software | Affected Version | How to fix |
---|---|---|
Zte Zxcdn-sns Firmware | <4.01.01 | |
ZTE ZXCDN-SNS |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.