Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-21727
A ZTE product has a DoS vulnerability. A remote attacker can amplify traffic by sending carefully constructed IPv6 packets to the affected devices, which eventually leads to device denial of service. This affects:<ZXHN F623><All versions up to V6.0.0P3T33>
Zte Zxhn F623 Firmware
2.3
CVSSv3
CVE-2021-21726
Some ZTE products have an input verification vulnerability in the diagnostic function interface. Due to insufficient verification of some parameters input by users, an attacker with high privileges can cause process exception by repeatedly inputting illegal parameters. This affec...
Zte Zxone 9700 Firmware 1.40.021.021cp049
Zte Zxone 8700 Firmware 1.40.021.021cp049
Zte Zxone 19700 Firmware 1.0p02b219 \\@ncpm-release 2.40r1-20200914.set
5.7
CVSSv3
CVE-2021-21725
A ZTE product has an information leak vulnerability. An attacker with higher authority can go beyond their authority to access files in other directories by performing specific operations, resulting in information leak. This affects: ZXHN H196Q V9.1.0C2.
Zte Zxhn H196q Firmware 9.1.0c2
4.4
CVSSv3
CVE-2021-21724
A ZTE product has a memory leak vulnerability. Due to the product's improper handling of memory release in certain scenarios, a local attacker with device permissions repeatedly attenuated the optical signal to cause memory leak and abnormal service. This affects: ZXR10 8900...
Zte Zxr10 8900e Firmware
7.5
CVSSv3
CVE-2021-21723
Some ZTE products have a DoS vulnerability. Due to the improper handling of memory release in some specific scenarios, a remote attacker can trigger the vulnerability by performing a series of operations, resulting in memory leak, which may eventually lead to device denial of ser...
Zte Zxr10 9904 Firmware
Zte Zxr10 9908 Firmware
Zte Zxr10 9916 Firmware
Zte Zxr10 9904-s Firmware
Zte Zxr10 9908-s Firmware
4.4
CVSSv3
CVE-2021-21722
A ZTE Smart STB is impacted by an information leak vulnerability. The device did not fully verify the log, so attackers could use this vulnerability to obtain sensitive user information for further information detection and attacks. This affects: ZXV10 B860A V2.1-T_V0032.1.1.04_j...
Zte Zxv10 B860a Firmware V2.1-t V0032.1.1.04 Jiangsutelecom
7.5
CVSSv3
CVE-2020-6881
ZTE E8810/E8820/E8822 series routers have an MQTT DoS vulnerability, which is caused by the failure of the device to verify the validity of abnormal messages. A remote attacker could connect to the MQTT server and send an MQTT exception message to the specified device, which will...
Zte Zxhn E8810 Firmware 1.0.26
Zte Zxhn E8810 Firmware 2.0.1
Zte Zxhn E8820 Firmware 1.1.3
Zte Zxhn E8820 Firmware 2.0.13
Zte Zxhn E8822 Firmware 2.0.13
7.5
CVSSv3
CVE-2020-6882
ZTE E8810/E8820/E8822 series routers have an information leak vulnerability, which is caused by hard-coded MQTT service access credentials on the device. The remote attacker could use this credential to connect to the MQTT server, so as to obtain information about other devices b...
Zte Zxhn E8810 Firmware 1.0.26
Zte Zxhn E8810 Firmware 2.0.1
Zte Zxhn E8820 Firmware 1.1.3
Zte Zxhn E8820 Firmware 2.0.13
Zte Zxhn E8822 Firmware 2.0.13
9.8
CVSSv3
CVE-2020-6880
A ZXELINK wireless controller has a SQL injection vulnerability. A remote attacker does not need to log in. By sending malicious SQL statements, because the device does not properly filter parameters, successful use can obtain management rights. This affects: ZXV10 W908 all versi...
Zte Zxv10 W908 Firmware
3.5
CVSSv3
CVE-2020-6879
Some ZTE devices have input verification vulnerabilities. The devices support configuring a static prefix through the web management page. The restriction of the front-end code can be bypassed by constructing a POST request message and sending the request to the creation of a sta...
Zte Zxhn Z500 Firmware V1.0.0.2b1.1000
Zte Zxhn F670l Firmware V1.1.10p1n2e
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »