CVE-2021-21735

Name of the Vulnerable Software and Affected Versions ZXHN H168N versions prior to V3.5.0 EG1T4 TE

Description An information leak exists due to improper permission settings. An attacker with ordinary user permissions can obtain sensitive user information, including PPPoE and WLAN secrets, without authentication. This is possible because endpoints under '/wizard page/' use a brittle whitelist decision, leading to route misclassification in the firmware and secret exposure through setup handlers. In some scenarios, this can be used in a browser-delivered chain where attacker-controlled code queries the exposed handler to exfiltrate the Wi-Fi passphrase.

Recommendations Update to a version later than V3.5.0 EG1T4 TE. Restrict access to the '/wizard page/' endpoints to minimize the risk of exploitation.