Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-6877
A ZTE product is impacted by an information leak vulnerability. An attacker could use this vulnerability to obtain the authentication password of the handheld terminal and access the device illegally for operation. This affects: ZXA10 eODN V2.3P2T1
Zte Zxa10 Eodn Firmware 2.3p2t1
5.4
CVSSv3
CVE-2020-6876
A ZTE product is impacted by an XSS vulnerability. The vulnerability is caused by the lack of correct verification of client data in the WEB module. By inserting malicious scripts into the web module, a remote attacker could trigger an XSS attack when the user browses the web pag...
Zte Evdc Zxcloud-irosv6.03.04
9.8
CVSSv3
CVE-2020-6875
A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access right through brute-force attacks. This affects: <ZXONE 19700 SNPE><ZXONE87...
Zte Zxone 19700 Snpe Firmware Zxone8700v1.40r2b13 Snpe
5.3
CVSSv3
CVE-2020-6873
A ZTE product has a DoS vulnerability. Because the equipment couldn’t distinguish the attack packets and normal packets with valid http links, the remote attackers could use this vulnerability to cause the equipment WEB/TELNET module denial of service and make the equipment...
Zte Zxr10 2800-4 Almpufb\\(low\\) Firmware
9.1
CVSSv3
CVE-2020-6874
A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability for account credential enumeration attack or brute-force attack for password guessing. This affects: ZXIPTV, ZXIPTV...
Zte Zxiptv Firmware Zxiptv-web-pv5.09.08.04
6.1
CVSSv3
CVE-2020-6872
The server management software module of ZTE has a storage XSS vulnerability. The attacker inserts some attack codes through the foreground login page, which will cause the user to execute the predefined malicious script in the browser. This affects <R5300G4V03.08.0100/V03.07....
Zte R8500g4 Firmware 03.05.0020
Zte R8500g4 Firmware 03.05.0400
Zte R8500g4 Firmware 03.06.0100
Zte R8500g4 Firmware 03.07.0101
Zte R8500g4 Firmware 03.07.0103
Zte R5500g4 Firmware 03.06.0100
Zte R5500g4 Firmware 03.07.0100
Zte R5500g4 Firmware 03.07.0200
Zte R5500g4 Firmware 03.08.0100
Zte R5300g4 Firmware 03.04.0020
Zte R5300g4 Firmware 03.05.0040
Zte R5300g4 Firmware 03.05.0043
Zte R5300g4 Firmware 03.05.0044
Zte R5300g4 Firmware 03.05.0045
Zte R5300g4 Firmware 03.05.0046
Zte R5300g4 Firmware 03.05.0047
Zte R5300g4 Firmware 03.07.0100
Zte R5300g4 Firmware 03.07.0108
Zte R5300g4 Firmware 03.07.0200
Zte R5300g4 Firmware 03.07.0300
Zte R5300g4 Firmware 03.08.0100
9.8
CVSSv3
CVE-2020-6871
The server management software module of ZTE has an authentication issue vulnerability, which allows users to skip the authentication of the server and execute some commands for high-level users. This affects: <R5300G4V03.08.0100/V03.07.0300/V03.07.0200/V03.07.0108/V03.07.0100...
Zte R8500g4 Firmware 03.05.0020
Zte R8500g4 Firmware 03.05.0400
Zte R8500g4 Firmware 03.06.0100
Zte R8500g4 Firmware 03.07.0101
Zte R8500g4 Firmware 03.07.0103
Zte R5500g4 Firmware 03.06.0100
Zte R5500g4 Firmware 03.07.0100
Zte R5500g4 Firmware 03.07.0200
Zte R5500g4 Firmware 03.08.0100
Zte R5300g4 Firmware 03.04.0020
Zte R5300g4 Firmware 03.05.0040
Zte R5300g4 Firmware 03.05.0043
Zte R5300g4 Firmware 03.05.0044
Zte R5300g4 Firmware 03.05.0045
Zte R5300g4 Firmware 03.05.0046
Zte R5300g4 Firmware 03.05.0047
Zte R5300g4 Firmware 03.07.0100
Zte R5300g4 Firmware 03.07.0108
Zte R5300g4 Firmware 03.07.0200
Zte R5300g4 Firmware 03.07.0300
Zte R5300g4 Firmware 03.08.0100
8
CVSSv3
CVE-2020-6870
The version V12.17.20T115 of ZTE U31R20 product is impacted by a design error vulnerability. An attacker could exploit the vulnerability to log in to the FTP server to tamper with the password, and illegally download, modify, upload, or delete files, causing improper operation of...
Zte Netnumen U31 R10 Firmware V12.17.20t115
8.1
CVSSv3
CVE-2020-6869
All versions up to 10.06 of ZTEMarket APK are impacted by an information leak vulnerability. Due to Activity Component exposure users can exploit this vulnerability to get the private cookie and execute silent installation.
Zte Ztemarket Apk
7.5
CVSSv3
CVE-2020-12695
The Open Connectivity Foundation UPnP specification prior to 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
Ui Unifi Controller -
W1.fi Hostapd
Asus Rt-n11 -
Broadcom Adsl -
Canon Selphy Cp1200 -
Cisco Wap150 -
Cisco Wap351 -
Cisco Wap131 -
Dlink Dvg-n5412sp -
Dell B1165nfw -
Epson Ew-m970a3t -
Epson Ep-101 -
Epson Xp-8500 -
Epson Xp-702 -
Epson Xp-340 -
Epson Xp-620 -
Epson Xp-320 -
Epson Xp-960 -
Epson Xp-2101 -
Epson Xp-330 -
Epson Xp-2105 -
Epson Xp-100 -
6 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »