Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 16/06/2023 Updated: 26/06/2023

CVSS v3 Base Score: 7.7 | Impact Score: 5.2 | Exploitability Score: 2.5

VMScore: 0

There is a permission and access control vulnerability in some ZTE AndroidTV STBs. Due to improper permission settings, non-privileged application can perform functions that are protected with signature/privilege-level permissions. Exploitation of this vulnerability could clear personal data and applications on the user's device, affecting device operation.

Vulnerable Product	Search on Vulmon	Subscribe to Product
zte up_t2_4k_firmware v84511302.1427
zte zxv10_b866v2-h_firmware v84711321.0038
zte zxv10_b866v2-h_firmware v84711321.0040
zte zxv10_b866v2-h_firmware v84711321.0045
zte zxv10_b866v2-h_firmware v84711321.0049
zte zxv10_b866v2_firmware v82811306.3021
zte zxv10_b866v2_firmware v82815416.1027
zte zxv10_b866v2_firmware v82815416.1028
zte zxv10_b866v2_firmware v82815416.1029
zte zxv10_b866v2_firmware v82815416.2012
zte zxv10_b866v2_firmware v84711309.0016
zte zxv10_b866v2_firmware v84711309.0018
zte zxv10_b866v2_firmware v84711309.0019
zte zxv10_b860h_v5d0_firmware v83011303.0049
zte zxv10_b860h_v5d0_firmware v83011303.0051
zte zxv10_b860h_v5d0_firmware v83011303.0053
zte zxv10_b860h_v5d0_firmware v83011303.0063
zte zxv10_b860h_v5d0_firmware v83011303.0069
zte zxv10_b866v2f_firmware v86111338.0026
zte zxv10_b866v2f_firmware v86111338.0031
zte zxv10_b866v2f_firmware v86111338.0033
zte zxv10_b866v2f_firmware v86111338.0035

CWE-276 https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1031464 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-25645

Vulnerability Summary

References

Vulmon Search

About

Products

Connect