CVE-2021-21745 Scanner
Detects 'Authentication Bypass' vulnerability in ZTE MF971R affects v. 1.0.0B05, 1.0.0B06, 1.0.0B03, 1.0.0B03, 1.0.0B05.
Short Info
Level
Medium
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 second
Time Interval
3 month
Scan only one
Domain, Ipv4
Toolbox
-
The ZTE MF971R is a high-performance mobile Wi-Fi router designed for users who require high-speed internet connectivity on the go. It supports various networks such as 4G LTE, 3G, and 2G, providing users with fast and stable internet access wherever they are. The device has a built-in battery that can last for up to 12 hours on a single charge, making it ideal for users who are constantly on the move. With its compact and portable design, the ZTE MF971R has become a popular choice for business travelers, students, and outdoor enthusiasts.
The CVE-2021-21745 vulnerability, which has been detected in the ZTE MF971R, allows an attacker to bypass Referer authentication without CSRF verification. This vulnerability can enable an attacker to carry out illegal authorization operations by sending a request to the user to prompt them to click on a link. Once the user clicks on the link, the attacker can gain unauthorized access to the router and all its connected devices. This vulnerability can also allow an attacker to steal sensitive information, such as login credentials, personal information, and financial data.
Exploitation of the CVE-2021-21745 vulnerability can have severe consequences for users. Attackers can easily take control of the device, launch attacks on other devices on the network, or steal sensitive information. Hackers can also use this vulnerability to launch a ransomware attack, encrypting data on the device and demanding a ransom for its decryption. Such an attack can cause financial loss and disrupt business operations.
At s4e.io, we offer pro features that enable users to easily and quickly learn about vulnerabilities in their digital assets. Our platform provides timely and accurate information about vulnerabilities, enabling users to take the necessary precautions to protect their devices and networks. Using our services, users can also receive alerts about new vulnerabilities and security patches, ensuring their assets are always secure. Invest in the pro features of s4e.io today and secure your digital assets.
REFERENCES