CVE-2021-21723

Some ZTE products have a DoS vulnerability. Due to the improper handling of memory release in some specific scenarios, a remote attacker can trigger the vulnerability by performing a series of operations, resulting in memory leak, which may eventually lead to device denial of service. This affects: ZXR10 9904, ZXR10 9908, ZXR10 9916, ZXR10 9904-S, ZXR10 9908-S; all versions up to V1.01.10.B12.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zte:zxr10_9904_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxr10_9904:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:zte:zxr10_9908_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxr10_9908:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:zte:zxr10_9916_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxr10_9916:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:zte:zxr10_9904-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxr10_9904-s:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:zte:zxr10_9908-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxr10_9908-s:-:*:*:*:*:*:*:*

Information

Published : 2021-01-26 10:16

Updated : 2021-02-02 13:19


NVD link : CVE-2021-21723

Mitre link : CVE-2021-21723


JSON object : View

CWE
CWE-401

Missing Release of Memory after Effective Lifetime

Advertisement

dedicated server usa

Products Affected

zte

  • zxr10_9904-s_firmware
  • zxr10_9904-s
  • zxr10_9908-s_firmware
  • zxr10_9904_firmware
  • zxr10_9916_firmware
  • zxr10_9908-s
  • zxr10_9908_firmware
  • zxr10_9904
  • zxr10_9916
  • zxr10_9908