CVE-2021-21744
First published: Wed Oct 20 2021(Updated: )
ZTE MF971R product has a configuration file control vulnerability. An attacker could use this vulnerability to modify the configuration parameters of the device, causing some security functions of the device to be disabled.
Credit: psirt@zte.com.cn
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zte Mf971r Firmware | =v1.0.0b05 | |
| ZTE MF971R | ||
| Zte Mf971r Firmware | =1v1.0.0b06 | |
| Zte Mf971r Firmware | =2v1.0.0b03 | |
| Zte Mf971r Firmware | =s2v1.0.0b03 | |
| Zte Mf971r Firmware | =sv1.0.0b05 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2021-21744?
CVE-2021-21744 is a configuration file control vulnerability in the ZTE MF971R product.
How does the vulnerability in ZTE MF971R affect the device?
The vulnerability allows an attacker to modify the configuration parameters of the device, potentially disabling some security functions.
What is the severity of CVE-2021-21744?
The severity of CVE-2021-21744 is high, with a score of 7.5.
Is ZTE MF971R firmware v1.0.0b05 affected by CVE-2021-21744?
Yes, ZTE MF971R firmware v1.0.0b05 is affected by CVE-2021-21744.
How can I fix the vulnerability in ZTE MF971R?
To fix the vulnerability, it is recommended to update to a fixed version of the firmware provided by ZTE.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/event
- agent/description
- agent/first-publish-date
- agent/tags
- agent/source
- vendor/zte
- canonical/zte mf971r firmware
- version/zte mf971r firmware/v1.0.0b05
- canonical/zte mf971r
- version/zte mf971r firmware/1v1.0.0b06
- version/zte mf971r firmware/2v1.0.0b03
- version/zte mf971r firmware/s2v1.0.0b03
- version/zte mf971r firmware/sv1.0.0b05