Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-21723
Some ZTE products have a DoS vulnerability. Due to the improper handling of memory release in some specific scenarios, a remote attacker can trigger the vulnerability by performing a series of operations, resulting in memory leak, which may eventually lead to device denial of ser...
Zte Zxr10 9904 Firmware
Zte Zxr10 9908 Firmware
Zte Zxr10 9916 Firmware
Zte Zxr10 9904-s Firmware
Zte Zxr10 9908-s Firmware
3.3
CVSSv3
CVE-2023-25647
There is a permission and access control vulnerability in some ZTE mobile phones. Due to improper access control, applications in mobile phone could monitor the touch event.
Zte Axon 30 Firmware
Zte Axon 40 Pro Firmware
Zte Axon 40 Ultra Firmware
Zte Nubia Z50 Firmware
4.3
CVSSv3
CVE-2021-21745
ZTE MF971R product has a Referer authentication bypass vulnerability. Without CSRF verification, an attackercould use this vulnerability to perform illegal authorization operations by sending a request to the user to click.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
7.5
CVSSv3
CVE-2020-6881
ZTE E8810/E8820/E8822 series routers have an MQTT DoS vulnerability, which is caused by the failure of the device to verify the validity of abnormal messages. A remote attacker could connect to the MQTT server and send an MQTT exception message to the specified device, which will...
Zte Zxhn E8810 Firmware 1.0.26
Zte Zxhn E8810 Firmware 2.0.1
Zte Zxhn E8820 Firmware 1.1.3
Zte Zxhn E8820 Firmware 2.0.13
Zte Zxhn E8822 Firmware 2.0.13
7.5
CVSSv3
CVE-2020-6882
ZTE E8810/E8820/E8822 series routers have an information leak vulnerability, which is caused by hard-coded MQTT service access credentials on the device. The remote attacker could use this credential to connect to the MQTT server, so as to obtain information about other devices b...
Zte Zxhn E8810 Firmware 1.0.26
Zte Zxhn E8810 Firmware 2.0.1
Zte Zxhn E8820 Firmware 1.1.3
Zte Zxhn E8820 Firmware 2.0.13
Zte Zxhn E8822 Firmware 2.0.13
4.3
CVSSv3
CVE-2021-21743
ZTE MF971R product has a CRLF injection vulnerability. An attacker could exploit the vulnerability to modify the HTTP response header information through a specially crafted HTTP request.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
7.5
CVSSv3
CVE-2021-21744
ZTE MF971R product has a configuration file control vulnerability. An attacker could use this vulnerability to modify the configuration parameters of the device, causing some security functions of the device to be disabled.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
6.1
CVSSv3
CVE-2021-21746
ZTE MF971R product has reflective XSS vulnerability. An attacker could use the vulnerability to obtain cookie information.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
6.1
CVSSv3
CVE-2021-21747
ZTE MF971R product has reflective XSS vulnerability. An attacker could use the vulnerability to obtain cookie information.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
9.8
CVSSv3
CVE-2021-21748
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »