Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-39073
There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands.
Zte Mf286r Firmware Nordic Mf286r B06
1 Github repository
9.8
CVSSv3
CVE-2022-39070
There is an access control vulnerability in some ZTE PON OLT products. Due to improper access control settings, remote attackers could use the vulnerability to log in to the device and execute any operation.
Zte Zxa10 C350m Firmware
Zte Zxa10 C300m Firmware
9.8
CVSSv3
CVE-2021-21748
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
9.8
CVSSv3
CVE-2021-21749
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
9.8
CVSSv3
CVE-2021-21741
There is a command execution vulnerability in a ZTE conference management system. As some services are enabled by default, the attacker could exploit this vulnerability to execute arbitrary commands by sending specific serialization command.
Zte Zxv10 M910 Firmware 1.2.16.01u01.01
Zte Zxv10 M910 Firmware 1.2.19.01u01.01
Zte Zxv10 M910 Firmware 1.2.20.01u01.01
Zte Zxv10 M910 Firmware 1.2.21.01.04
9.8
CVSSv3
CVE-2021-21730
A ZTE product is impacted by improper access control vulnerability. The attacker could exploit this vulnerability to access CLI by brute force attacks.This affects: ZXHN H168N V3.5.0_TY.T6
Zte Zxhn H168n Firmware 3.5.0 Ty.t6
9.8
CVSSv3
CVE-2020-6880
A ZXELINK wireless controller has a SQL injection vulnerability. A remote attacker does not need to log in. By sending malicious SQL statements, because the device does not properly filter parameters, successful use can obtain management rights. This affects: ZXV10 W908 all versi...
Zte Zxv10 W908 Firmware
9.8
CVSSv3
CVE-2020-6875
A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access right through brute-force attacks. This affects: <ZXONE 19700 SNPE><ZXONE87...
Zte Zxone 19700 Snpe Firmware Zxone8700v1.40r2b13 Snpe
9.8
CVSSv3
CVE-2020-6871
The server management software module of ZTE has an authentication issue vulnerability, which allows users to skip the authentication of the server and execute some commands for high-level users. This affects: <R5300G4V03.08.0100/V03.07.0300/V03.07.0200/V03.07.0108/V03.07.0100...
Zte R8500g4 Firmware 03.05.0020
Zte R8500g4 Firmware 03.05.0400
Zte R8500g4 Firmware 03.06.0100
Zte R8500g4 Firmware 03.07.0101
Zte R8500g4 Firmware 03.07.0103
Zte R5500g4 Firmware 03.06.0100
Zte R5500g4 Firmware 03.07.0100
Zte R5500g4 Firmware 03.07.0200
Zte R5500g4 Firmware 03.08.0100
Zte R5300g4 Firmware 03.04.0020
Zte R5300g4 Firmware 03.05.0040
Zte R5300g4 Firmware 03.05.0043
Zte R5300g4 Firmware 03.05.0044
Zte R5300g4 Firmware 03.05.0045
Zte R5300g4 Firmware 03.05.0046
Zte R5300g4 Firmware 03.05.0047
Zte R5300g4 Firmware 03.07.0100
Zte R5300g4 Firmware 03.07.0108
Zte R5300g4 Firmware 03.07.0200
Zte R5300g4 Firmware 03.07.0300
Zte R5300g4 Firmware 03.08.0100
9.8
CVSSv3
CVE-2019-3431
All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have encryption problems vulnerability. Attackers could sniff unencrypted account and password through the network for front-end system access.
Zte Zxcloud Goldendata Vap
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »