CVE-2026-34472

Name of the Vulnerable Software and Affected Versions ZTE ZXHN H188A versions V6.0.10P2 TE through V6.0.10P3N3 TE

Description An issue exists that allows unauthenticated attackers on the local network to retrieve sensitive credentials from the router's web management interface. These credentials include the default administrator password, WLAN PSK, and PPPoE credentials. In some instances, configuration changes can also be made without authentication through the wizard interface.

Recommendations Versions V6.0.10P2 TE and V6.0.10P3N3 TE are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.