Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-21749
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
8.8
CVSSv3
CVE-2018-7357
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper access control vulnerability, which may allow an unauthorized user to gain unauthorized access.
Zte Zxhn H168n Firmware 2.2.0 Pk11t7
Zte Zxhn H168n Firmware 2.2.0 Pk11t
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t5
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t2
8.8
CVSSv3
CVE-2018-7358
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper change control vulnerability, which may allow an unauthorized user to perform unauthorized operations.
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t2
Zte Zxhn H168n Firmware 2.2.0 Pk11t7
Zte Zxhn H168n Firmware 2.2.0 Pk11t
Zte Zxhn H168n Firmware 2.2.0 Pk1.2t5
9.8
CVSSv3
CVE-2021-21741
There is a command execution vulnerability in a ZTE conference management system. As some services are enabled by default, the attacker could exploit this vulnerability to execute arbitrary commands by sending specific serialization command.
Zte Zxv10 M910 Firmware 1.2.16.01u01.01
Zte Zxv10 M910 Firmware 1.2.19.01u01.01
Zte Zxv10 M910 Firmware 1.2.20.01u01.01
Zte Zxv10 M910 Firmware 1.2.21.01.04
6.1
CVSSv3
CVE-2018-7355
All versions up to V1.0.0B05 of ZTE MF65 and all versions up to V1.0.0B02 of ZTE MF65M1 are impacted by cross-site scripting vulnerability. Due to improper neutralization of input during web page generation, an attacker could exploit this vulnerability to conduct reflected XSS or...
Zte Mf65 Firmware
Zte Mf65m1 Firmware
1 EDB exploit
9.8
CVSSv3
CVE-2022-39070
There is an access control vulnerability in some ZTE PON OLT products. Due to improper access control settings, remote attackers could use the vulnerability to log in to the device and execute any operation.
Zte Zxa10 C350m Firmware
Zte Zxa10 C300m Firmware
6.5
CVSSv3
CVE-2022-23135
There is a directory traversal vulnerability in some home gateway products of ZTE. Due to the lack of verification of user modified destination path, an attacker with specific permissions could modify the FTP access path to access and modify the system path contents without autho...
Zte Zxhn F677 Firmware
Zte Zxhn F477 Firmware
6.5
CVSSv3
CVE-2015-8703
ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE and ZXV10 W300 devices W300V1.0.0f_ER1_PE allow remote authenticated users to bypass intended access restrictions, and discover credentials and keys, by reading the configuration file, a different vulnerability than CVE-...
Zte Zxhn H108n R1a Firmware
Zte Zxv10 W300 Firmware
1 EDB exploit
NA
CVE-2014-2321
web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote malicious users to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials.
Zte F660 -
Zte F460 -
1 Github repository
7.2
CVSSv3
CVE-2018-7365
All versions up to ZXCLOUD iRAI V5.01.05 of the ZTE uSmartView product are impacted by untrusted search path vulnerability, which may allow an unauthorized user to perform unauthorized operations.
Zte Zxcloud Irai
Zte Usmartview -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »