CVE-2023-25646
Permission and Access Control Vulnerability in ZTE H388X
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.1EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
20 jun 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
There is an unauthorized access vulnerability in ZTE H388X. If H388X is caused by brute-force serial port cracking,attackers with common user permissions can use this vulnerability to obtain elevated permissions on the affected device by performing specific operations.
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Productos afectados
ZTE · ZXHN H388X¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →