GobyVuls/ZXHN H108NS Router tools_admin.asp Permission Bypass Vulnerability.md

## ZXHN H108NS Router tools_admin.asp Permission Bypass Vulnerability

|   **Vulnerability**  | **ZXHN H108NS Router tools_admin.asp Permission Bypass Vulnerability**  |
| :----:   | :-----|
|  **Chinese name**  | 中兴 H108NS 路由器 tools_admin.asp 文件权限绕过漏洞 |
| **CVSS core**  | 9.0 |
| **FOFA Query**  (click to view the results directly)| [banner=\"Basic realm=\\\"H108NS\\\"\" \|\| header=\"Basic realm=\\\"H108NS\\\"\"](https://en.fofa.info/result?qbase64=YmFubmVyPSJCYXNpYyByZWFsbT1cIkgxMDhOU1wiIiB8fCBoZWFkZXI9IkJhc2ljIHJlYWxtPVwiSDEwOE5TXCIi) |
| **Number of assets affected**  | 8245 |
| **Description**  | ZTE H108NS router is a router product that integrates WiFi management, route allocation, dynamic access to Internet connections and other functions. The ZTE H108NS router has an identity authentication bypass vulnerability. An attacker can use this vulnerability to bypass identity authentication and allow access to the router's management panel to modify the administrator password to obtain sensitive user information. |
| **Impact** | An attacker can use this vulnerability to bypass identity authentication and allow access to the management panel of the router to modify the administrator password and obtain sensitive information of the user. |

![](https://s3.bmp.ovh/imgs/2023/04/27/79bd32a6c7ab12b2.gif)
Create ZXHN H108NS Router tools_admin.asp Permission Bypass Vulnerability.md add ZXHN H108NS Router tools_admin.asp Permission Bypass Vulnerability 2023-04-27 21:58:02 +08:00			`## ZXHN H108NS Router tools_admin.asp Permission Bypass Vulnerability`

			`\| Vulnerability \| ZXHN H108NS Router tools_admin.asp Permission Bypass Vulnerability \|`
			`\| :----: \| :-----\|`
			`\| Chinese name \| 中兴 H108NS 路由器 tools_admin.asp 文件权限绕过漏洞 \|`
			`\| CVSS core \| 9.0 \|`
			`\| FOFA Query (click to view the results directly)\| [banner=\"Basic realm=\\\"H108NS\\\"\" \\|\\| header=\"Basic realm=\\\"H108NS\\\"\"](https://en.fofa.info/result?qbase64=YmFubmVyPSJCYXNpYyByZWFsbT1cIkgxMDhOU1wiIiB8fCBoZWFkZXI9IkJhc2ljIHJlYWxtPVwiSDEwOE5TXCIi) \|`
			`\| Number of assets affected \| 8245 \|`
			`\| Description \| ZTE H108NS router is a router product that integrates WiFi management, route allocation, dynamic access to Internet connections and other functions. The ZTE H108NS router has an identity authentication bypass vulnerability. An attacker can use this vulnerability to bypass identity authentication and allow access to the router's management panel to modify the administrator password to obtain sensitive user information. \|`
			`\| Impact \| An attacker can use this vulnerability to bypass identity authentication and allow access to the management panel of the router to modify the administrator password and obtain sensitive information of the user. \|`

			`![](https://s3.bmp.ovh/imgs/2023/04/27/79bd32a6c7ab12b2.gif)`