Zte · Zxhn F670 · CVE-2019-3418
**Name of the Vulnerable Software and Affected Versions**
ZTE ZXHN F670 product versions up to V1.1.10P3T18
**Description**
The issue is related to a cross-site scripting vulnerability (XSS) due to incomplete input validation. An authorized user can exploit this to execute malicious scripts.
**Recommendations**
For versions up to V1.1.10P3T18, consider disabling any features that rely on user input validation until a patch is available.
Restrict access to sensitive areas of the product to minimize the risk of exploitation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.