There is a broken access control vulnerability in ZTE ZXvSTB product. Due to improper permission control, attackers could use this vulnerability to delete the default application type, which affects normal use of system.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HZte Zxa10 B700v7
HWZtewszystkie wersjeZte Zxa10 B700v7 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B710c A12
HWZtewszystkie wersjeZte Zxa10 B710c A12 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B710s2 A19
HWZtewszystkie wersjeZte Zxa10 B710s2 A19 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B766v2
HWZtewszystkie wersjeZte Zxa10 B766v2 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B76hv3
HWZtewszystkie wersjeZte Zxa10 B76hv3 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B800v2
HWZtewszystkie wersjeZte Zxa10 B800v2 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B836ct A15
HWZtewszystkie wersjeZte Zxa10 B836ct A15 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B860av2.1
HWZtewszystkie wersjeZte Zxa10 B860av2.1 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B860h
HWZtewszystkie wersjeZte Zxa10 B860h Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B866v2 H
HWZtewszystkie wersjeZte Zxa10 B866v2 H Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B866v5 W10
HWZtewszystkie wersjeZte Zxa10 B866v5 W10 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 B960gv1
HWZtewszystkie wersjeZte Zxa10 B960gv1 Firmware
OSZte≤ 2.01.02.01Zte Zxa10 S100v
HWZtewszystkie wersjeZte Zxa10 S100v Firmware
OSZte≤ 2.01.02.01Zte Zxa10 S200a
HWZtewszystkie wersjeZte Zxa10 S200a Firmware
OSZte≤ 2.01.02.01Zte Zxa10 S200t
HWZtewszystkie wersjeZte Zxa10 S200t Firmware
OSZte≤ 2.01.02.01
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2024-10119CRITICAL9.8PL ✓ten sam vendor
Command injection w routerze SECOM WRTM326 — zdalne wykonanie poleceń
CVE-2022-39073CRITICAL9.8ten sam vendor
There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input paramete...
CVE-2022-39070CRITICAL9.8ten sam vendor
There is an access control vulnerability in some ZTE PON OLT products. Due to improper access control settings...
CVE-2021-21748CRITICAL9.8ten sam vendor
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerab...
CVE-2021-21749CRITICAL9.8ten sam vendor
ZTE MF971R product has two stack-based buffer overflow vulnerabilities. An attacker could exploit the vulnerab...