![AttackFeed by Joe Wagner | [SECURITY ADVISORY] CVE-2026-34473 - Unauthenticated DoS in 17+ ZTE Router Models (140K+ Devices) - Full Disclosure](https://attackfeed.com/wp-content/uploads/2026/05/fulldisclosure-img-NWuSUV.png "[SECURITY ADVISORY] CVE-2026-34473 – Unauthenticated DoS in 17+ ZTE Router Models (140K+ Devices)")
Posted by m.nageh on May 25
—–BEGIN SECURITY ADVISORY—–
Advisory ID: MONX-2026-001
CVE ID: CVE-2026-34473
Title: Unauthenticated Denial of Service via Oversized POST Body
in ZTE Router CGILua Parser
Affected: 17+ ZTE ZXHN router models (~140,000 publicly exposed
devices)
CVSS Score: 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Date: 2026-05-20
Author: Mina Nageh Salalma (Monx Research)
Contact: minanageh379 () gmail…
– Read More – Full Disclosure
![AttackFeed by Joe Wagner | [KIS-2026-01] Blesta](https://attackfeed.com/wp-content/uploads/2026/02/fulldisclosure-img-gNG0t6.webp "[KIS-2026-01] Blesta <= 5.13.1 (confirm_url) Reflected Cross-Site Scripting Vulnerability")
