CVE-2026-34473

HIGH

ZTE Multiple Models - Unauthenticated DoS via Oversized POST Body

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2026-34473. PoCs published by Mina Nageh Salalma, minanagehsalalma.

AI-analyzed exploit summary The exploit demonstrates an unauthenticated DoS vulnerability in ZTE routers by sending an oversized POST request to the CGILua parser, causing the web service to crash or freeze. The PoC is functional and targets multiple ZTE router models.

Description

Unauthenticated DoS in ZTE H8102E, H168N, H167A, H199A, H288A, H198A, H267A, H267N, H268A, H388X, H196A, H369A, H268N, H208N, H367N, H181A, and H196Q. A denial-of-service condition can be triggered against the router's web interface by sending an oversized application/x-www-form-urlencoded POST body. After triggering, the management interface may become unresponsive until the device is rebooted. This may affect any firmware version prior to 2022 (reporter observation). The supplier stated that devices are not vulnerable since 2021-03-23; operator firmware may vary.

Exploits (2)

exploitdb WORKING POC

by Mina Nageh Salalma · textlocalmultiple

https://www.exploit-db.com/exploits/52594

View Code ZIP pw:eip

The exploit demonstrates an unauthenticated DoS vulnerability in ZTE routers by sending an oversized POST request to the CGILua parser, causing the web service to crash or freeze. The PoC is functional and targets multiple ZTE router models.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: ZTE ZXHN router models (17+ confirmed)

No auth needed

Prerequisites: network access to the target router

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed May 30, 2026 Full analysis →

nomisec WRITEUP 1 stars

by minanagehsalalma · poc

https://github.com/minanagehsalalma/cve-2026-34473-unauthenticated-dos-zte-routers

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2026-34473, an unauthenticated denial-of-service vulnerability affecting ZTE routers. It includes root cause analysis, firmware analysis artifacts, and validation notes, but does not contain functional exploit code.

Classification

Writeup 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: ZTE routers (17+ models)

No auth needed

Prerequisites: Network access to vulnerable ZTE router

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed May 17, 2026 Full analysis →

References (3)

Core 3

Core References

https://www.zte.com.cn/global/

https://gist.github.com/minanagehsalalma/7a8516b9b00d0008f2f25750320560c9

Mailing List

http://seclists.org/fulldisclosure/2026/May/18

Scores

CVSS v3 7.5

EPSS 0.0178

EPSS Percentile 83.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-400

Status published

Published May 06, 2026

Tracked Since May 07, 2026