Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-6882
ZTE E8810/E8820/E8822 series routers have an information leak vulnerability, which is caused by hard-coded MQTT service access credentials on the device. The remote attacker could use this credential to connect to the MQTT server, so as to obtain information about other devices b...
Zte Zxhn E8810 Firmware 1.0.26
Zte Zxhn E8810 Firmware 2.0.1
Zte Zxhn E8820 Firmware 1.1.3
Zte Zxhn E8820 Firmware 2.0.13
Zte Zxhn E8822 Firmware 2.0.13
NA
CVE-2023-25647
There is a permission and access control vulnerability in some ZTE mobile phones. Due to improper access control, applications in mobile phone could monitor the touch event.
Zte Axon 30 Firmware
Zte Axon 40 Pro Firmware
Zte Axon 40 Ultra Firmware
Zte Nubia Z50 Firmware
10
CVSSv2
CVE-2014-2321
web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote malicious users to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials.
Zte F460 -
Zte F660 -
1 Github repository
7.5
CVSSv2
CVE-2021-21741
There is a command execution vulnerability in a ZTE conference management system. As some services are enabled by default, the attacker could exploit this vulnerability to execute arbitrary commands by sending specific serialization command.
Zte Zxv10 M910 Firmware 1.2.16.01u01.01
Zte Zxv10 M910 Firmware 1.2.19.01u01.01
Zte Zxv10 M910 Firmware 1.2.20.01u01.01
Zte Zxv10 M910 Firmware 1.2.21.01.04
6.5
CVSSv2
CVE-2018-7365
All versions up to ZXCLOUD iRAI V5.01.05 of the ZTE uSmartView product are impacted by untrusted search path vulnerability, which may allow an unauthorized user to perform unauthorized operations.
Zte Zxcloud Irai
Zte Usmartview -
4.3
CVSSv2
CVE-2014-9020
Cross-site scripting (XSS) vulnerability in the Quick Stats page (psilan.cgi) in ZTE ZXDSL 831 and 831CII allows remote malicious users to inject arbitrary web script or HTML via the domainname parameter in a save action. NOTE: this issue was SPLIT from CVE-2014-9021 per ADT1 due...
Zte Zxdsl 831 -
Zte Zxdsl 831cii -
4.3
CVSSv2
CVE-2018-7355
All versions up to V1.0.0B05 of ZTE MF65 and all versions up to V1.0.0B02 of ZTE MF65M1 are impacted by cross-site scripting vulnerability. Due to improper neutralization of input during web page generation, an attacker could exploit this vulnerability to conduct reflected XSS or...
Zte Mf65 Firmware
Zte Mf65m1 Firmware
1 EDB exploit
4
CVSSv2
CVE-2020-6865
ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the internal error code location of the component. Attackers could exploit this vuln...
Zte Oscp 16.19.20
Zte Oscp 16.19.10
3.3
CVSSv2
CVE-2018-7357
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper access control vulnerability, which may allow an unauthorized user to gain unauthorized access.
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t2
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t5
Zte Zxhn H168n Firmware 2.2.0 Pk11t
Zte Zxhn H168n Firmware 2.2.0 Pk11t7
5.8
CVSSv2
CVE-2018-7358
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper change control vulnerability, which may allow an unauthorized user to perform unauthorized operations.
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t2
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t5
Zte Zxhn H168n Firmware 2.2.0 Pk11t
Zte Zxhn H168n Firmware 2.2.0 Pk11t7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »