Back to Explorer

CVE-2021-47741

PUBLISHED

12/31/2025 83251b91-4cc7-4094-a5c7-464a1b83ea10

Technical Description

ZBL EPON ONU Broadband Router V100R001 contains a privilege escalation vulnerability that allows limited administrative users to elevate access by sending requests to configuration endpoints. Attackers can exploit the vulnerability by accessing the configuration backup or password page to disclose the super user password and gain additional privileged functionalities.

Affected Products

Zblchina

ZBL EPON ONU Broadband Router

1.0

References

https://www.exploit-db.com/exploits/49737

ExploitDB-49737

http://www.zblchina.com

ZBL China Vendor Homepage

https://web.archive.org/web/20211220094023/http://www.wd-thailand.com/

Archived W&D Thailand Vendor Homepage

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5647.php

Zero Science Lab Disclosure (ZSL-2021-5647)

https://www.vulncheck.com/advisories/zbl-epon-onu-broadband-router-vr-privilege-escalation-via-configuration-endpoint

VulnCheck Advisory: ZBL EPON ONU Broadband Router V100R001 Privilege Escalation via Configuration Endpoint

Impact Analysis

Attack Vector Network

Attack Complexity Low

Privileges Required None