CVE-2019-3418

Name of the Vulnerable Software and Affected Versions ZTE ZXHN F670 product versions up to V1.1.10P3T18

Description The issue is related to a cross-site scripting vulnerability (XSS) due to incomplete input validation. An authorized user can exploit this to execute malicious scripts.

Recommendations For versions up to V1.1.10P3T18, consider disabling any features that rely on user input validation until a patch is available. Restrict access to sensitive areas of the product to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.