CVE-2017-16953

HIGH

ZTE ZXDSL 831CII Firmware - Unauthenticated Configuration Modification via connoppp.cgi

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-16953. PoCs published by Ibad Shah.

AI-analyzed exploit summary This exploit demonstrates an unauthorized configuration access vulnerability in ZTE ZXDSL 831 routers. By sending a simple GET request to the 'connoppp.cgi' endpoint, an attacker can bypass HTTP Basic Authentication and modify PPPoE configurations.

Description

connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET request.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Ibad Shah · textwebappshardware
https://www.exploit-db.com/exploits/43188

This exploit demonstrates an unauthorized configuration access vulnerability in ZTE ZXDSL 831 routers. By sending a simple GET request to the 'connoppp.cgi' endpoint, an attacker can bypass HTTP Basic Authentication and modify PPPoE configurations.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: ZTE ZXDSL 831CII
No auth needed
Prerequisites: Network access to the router's web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/43188/

Scores

CVSS v3 7.5
EPSS 0.1126
EPSS Percentile 95.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-287
Status published
Products (1)
zte/zxdsl_831cii_firmware
Published Dec 01, 2017
Tracked Since Feb 18, 2026