← back
CVE-2024-22067

ZTE NH8091 product has an improper permission control vulnerability

CVSS 6.8 MEDIUMEPSS 0.7%CWE-284
ZTE NH8091 product has an improper permission control vulnerability. Due to improper permission control of the Web module interface, an authenticated attacker may exploit the vulnerability to execute arbitrary commands.
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
ZTE · NH8091

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/6179526095692935173