Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zte vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-21745
ZTE MF971R product has a Referer authentication bypass vulnerability. Without CSRF verification, an attackercould use this vulnerability to perform illegal authorization operations by sending a request to the user to click.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
9.8
CVSSv3
CVE-2021-21748
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
9.8
CVSSv3
CVE-2021-21749
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerabilities to execute arbitrary code.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
6.1
CVSSv3
CVE-2021-21746
ZTE MF971R product has reflective XSS vulnerability. An attacker could use the vulnerability to obtain cookie information.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
6.1
CVSSv3
CVE-2021-21747
ZTE MF971R product has reflective XSS vulnerability. An attacker could use the vulnerability to obtain cookie information.
Zte Mf971r Firmware V1.0.0b05
Zte Mf971r Firmware 1v1.0.0b06
Zte Mf971r Firmware 2v1.0.0b03
Zte Mf971r Firmware S2v1.0.0b03
Zte Mf971r Firmware Sv1.0.0b05
5.5
CVSSv3
CVE-2021-21742
There is an information leak vulnerability in the message service app of a ZTE mobile phone. Due to improper parameter settings, attackers could use this vulnerability to obtain some sensitive information of users by accessing specific pages.
Zte Axon 30 Pro Message Service 5.3.1.2103091059
9.8
CVSSv3
CVE-2021-21741
There is a command execution vulnerability in a ZTE conference management system. As some services are enabled by default, the attacker could exploit this vulnerability to execute arbitrary commands by sending specific serialization command.
Zte Zxv10 M910 Firmware 1.2.16.01u01.01
Zte Zxv10 M910 Firmware 1.2.19.01u01.01
Zte Zxv10 M910 Firmware 1.2.20.01u01.01
Zte Zxv10 M910 Firmware 1.2.21.01.04
2.4
CVSSv3
CVE-2021-21740
There is an information leak vulnerability in the digital media player (DMS) of ZTE's residential gateway product. The attacker could insert the USB disk with the symbolic link into the residential gateway, and access unauthorized directory information through the symbolic l...
Zte Zxhn H2640 Firmware 10.0.0c6 Ty
6.1
CVSSv3
CVE-2021-21738
ZTE's big video business platform has two reflective cross-site scripting (XSS) vulnerabilities. Due to insufficient input verification, the attacker could implement XSS attacks by tampering with the parameters, to affect the operations of valid users. This affects: <ZXIP...
Zte Zxiptv Firmware Zxiptv-eas Pv5.06.04.09
4.6
CVSSv3
CVE-2021-21739
A ZTE's product of the transport network access layer has a security vulnerability. Because the system does not sufficiently verify the data reliability, attackers could replace an authenticated optical module on the equipment with an unauthenticated one, bypassing system au...
Zte Zxctn 6120h Firmware 5.10.00b24
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »