CVE-2026-34474

Name of the Vulnerable Software and Affected Versions ZTE ZXHN H298A version 1.1 ZTE H108N version 2.6

Description A crafted request to the router web interface can cause sensitive data exposure. This issue may leak device and account information, including the administrator password and WLAN Pre-Shared Key (PSK), which can lead to authentication bypass and network compromise. In some firmware versions, the exposure may be limited to partial identifiers such as the serial number, ESSID, and MAC addresses.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.