Notified:  August 14, 2015 Updated: October 30, 2015

Statement Date:   September 29, 2015

Status

Affected

Vendor Statement

The vulnerable W300 router was officially replaced by H108N V2.1 released in July 2014, and the vulnerable H108N was finished upgrading to version ZTE.bhs.ZXHNH108NR1A.k_PE through operator channel that all the vulnerabilities mentioned herein were fixed. ZTE recommends users to contact local operators for upgrade service.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Addendum

ZTE ZXHN H108N R1A router, version ZTE.bhs.ZXHNH108NR1A.h_PE, and ZXV10 W300 router, version W300V1.0.0f_ER1_PE, are affected as indicated.