CVE-2021-21751
First published: Mon Dec 27 2021(Updated: )
ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency between the front and back verifications when configuring the large screen page, an attacker with high privileges could exploit this vulnerability to tamper with the URL and cause service exception.
Credit: psirt@zte.com.cn psirt@zte.com.cn
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zte Zxin10 Cms | <=3.01.01.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2021-21751.
What is the affected software?
The affected software is ZTE BigVideo analysis product with version up to and including 3.01.01.04.
What is the severity of CVE-2021-21751?
The severity of CVE-2021-21751 is high with a score of 8.1.
What is the impact of the vulnerability?
An attacker with high privileges could exploit the vulnerability to tamper with the URL and cause service exception.
How can I fix the CVE-2021-21751 vulnerability?
To fix the CVE-2021-21751 vulnerability, it is recommended to update ZTE BigVideo analysis product to a version that includes the fix.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/event
- agent/type
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zte
- canonical/zte zxin10 cms
- version/zte zxin10 cms/3.01.01.04