{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T20:52:05.817","vulnerabilities":[{"cve":{"id":"CVE-2021-21743","sourceIdentifier":"psirt@zte.com.cn","published":"2021-10-20T16:15:08.103","lastModified":"2024-11-21T05:48:55.333","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"ZTE MF971R product has a CRLF injection vulnerability. An attacker could exploit the vulnerability to modify the HTTP response header information through a specially crafted HTTP request."},{"lang":"es","value":"El producto ZTE MF971R presenta una vulnerabilidad de inyección de CRLF. Un atacante podría aprovechar esta vulnerabilidad para modificar la información del encabezado de respuesta HTTP mediante una petición HTTP especialmente diseñada"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-74"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:zte:mf971r_firmware:v1.0.0b05:*:*:*:*:*:*:*","matchCriteriaId":"72A4F659-C656-47D6-B38E-5BA8E73DCD30"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*","matchCriteriaId":"9A7F54F4-E324-4D1E-839E-677396BAFE49"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:zte:mf971r_firmware:1v1.0.0b06:*:*:*:*:*:*:*","matchCriteriaId":"35FA4400-636F-48E7-AF1E-9416D9E9386F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*","matchCriteriaId":"9A7F54F4-E324-4D1E-839E-677396BAFE49"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:zte:mf971r_firmware:2v1.0.0b03:*:*:*:*:*:*:*","matchCriteriaId":"252BBFAA-0053-441A-8F20-A737EF573355"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*","matchCriteriaId":"9A7F54F4-E324-4D1E-839E-677396BAFE49"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:zte:mf971r_firmware:s2v1.0.0b03:*:*:*:*:*:*:*","matchCriteriaId":"7B066F08-DDC4-4868-8FD2-620E46660B64"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*","matchCriteriaId":"9A7F54F4-E324-4D1E-839E-677396BAFE49"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:zte:mf971r_firmware:sv1.0.0b05:*:*:*:*:*:*:*","matchCriteriaId":"AAA1BD70-DC47-4B81-A906-3FD76E593F75"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:zte:mf971r:*:*:*:*:*:*:*:*","matchCriteriaId":"9A7F54F4-E324-4D1E-839E-677396BAFE49"}]}]}],"references":[{"url":"https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764","source":"psirt@zte.com.cn","tags":["Vendor Advisory"]},{"url":"https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019764","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}