GCVE - cpe:2.3:h:adtran:netvanta_7100:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:adtran:netvanta_7100:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Adtran (`487b2f3a-2295-5559-8d5d-6eea400e8173`)
Product	Netvanta 7100 (`8b25f222-d5cc-54bc-b5f2-b6a7d3650c7e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-25681`	not_vulnerable	2026-06-03 14:44:05.775663	Details available AdTran Personal Phone Manager 10.8.1 software is vulnerable to an issue that allows for exfiltration of data over DNS. This could allow for exposed AdTran Personal Phone Manager web servers to be used as DNS redirectors to tunnel arbitrary data over DNS. NOTE: The affected appliances NetVanta 7060 and NetVanta 7100 are considered End of Life and as such this issue will not be patched Published: 2021-04-20T11:17:40.000Z Updated: 2024-08-03T20:11:27.960Z Open on db.gcve.eu Reference links http://adtran.com https://github.com/3ndG4me/AdTran-Personal-Phone-Manager-Vulns/blob/main/CVE-2021-25681.md http://packetstormsecurity.com/files/162280/Adtran-Personal-Phone-Manager-10.8.1-DNS-Exfiltration.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-25680`	not_vulnerable	2026-06-03 14:44:05.773895	Details available The AdTran Personal Phone Manager software is vulnerable to multiple reflected cross-site scripting (XSS) issues. These issues impact at minimum versions 10.8.1 and below but potentially impact later versions as well since they have not previously been disclosed. Only version 10.8.1 was able to be confirmed during primary research. NOTE: The affected appliances NetVanta 7060 and NetVanta 7100 are considered End of Life and as such this issue will not be patched Published: 2021-04-20T11:17:34.000Z Updated: 2024-08-03T20:11:27.942Z Open on db.gcve.eu Reference links http://adtran.com https://github.com/3ndG4me/AdTran-Personal-Phone-Manager-Vulns/blob/main/CVE-2021-25680.md http://packetstormsecurity.com/files/162269/Adtran-Personal-Phone-Manager-10.8.1-Cross-Site-Scripting.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-25679`	not_vulnerable	2026-06-03 14:44:05.773389	Details available The AdTran Personal Phone Manager software is vulnerable to an authenticated stored cross-site scripting (XSS) issues. These issues impact at minimum versions 10.8.1 and below but potentially impact later versions as well since they have not previously been disclosed. Only version 10.8.1 was able to be confirmed during primary research. NOTE: The affected appliances NetVanta 7060 and NetVanta 7100 are considered End of Life and as such this issue will not be patched Published: 2021-04-20T11:17:27.000Z Updated: 2024-08-03T20:11:28.397Z Open on db.gcve.eu Reference links http://adtran.com https://depthsecurity.com/blog/vulnerability-disclosure https://github.com/3ndG4me/AdTran-Personal-Phone-Manager-Vulns/blob/main/CVE-2021-25679.md http://packetstormsecurity.com/files/162268/Adtran-Personal-Phone-Manager-10.8.1-Persistent-Cross-Site-Scripting.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-5210`	vulnerable	2026-06-03 14:33:20.826099	Details available Cross-site scripting (XSS) vulnerability in the GUI login page in ADTRAN AOS before R10.8.1 on the NetVanta 7100 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: 2013-12-30T02:00:00.000Z Updated: 2024-08-06T17:06:52.314Z Open on db.gcve.eu Reference links https://supportforums.adtran.com/servlet/JiveServlet/downloadBody/6414-102-3-7862/NetVanta%207000%20Series%20Products%20AOS%20R10.8.1%20Release%20Notes.pdf https://supportforums.adtran.com/docs/DOC-6414	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.