Vulnerabilidades em ZTE
99 resultadosCVE-2024-22065MEDIUMZTE MF258 Pro product has a OS Command injection vulnerabilityEPSS 1.2%CVE-2017-10930—The ZXR10 1800-2S before v3.00.40 incorrectly restricts access to a resource from an unauthorized actor, resulting in ordinary users being aEPSS 1.1%CVE-2019-3427—The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a code injection vulnerability. An attacker could exploit the vulnerabiliEPSS 1.1%CVE-2019-3416HIGHAll versions up to V81511329.1008 of ZTE ZXV10 B860A products are impacted by input validation vulnerability. Due to input validation, unautEPSS 1.1%CVE-2018-7360CRITICALAll versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by information exposure vulnerability, which may allow an unauthenticaEPSS 1.0%CVE-2019-3422—The Sec Consult Security Lab reported an information disclosure vulnerability in MF910S product to ZTE PSIRT in October 2019. Through the anEPSS 1.0%CVE-2019-3428—The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. An attacker could directly access thEPSS 0.9%CVE-2019-3415—ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path traversal vulnerability. Due to path traversal,users can download any files.EPSS 0.9%CVE-2018-7363MEDIUMAll versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper authorization vulnerability. Since appviahttp service has EPSS 0.9%CVE-2019-3430—All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have an information disclosure vulnerability. Attackers could use this EPSS 0.9%CVE-2019-3429—All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have a file reading vulnerability. Attackers could obtain log file infoEPSS 0.9%CVE-2018-7361MEDIUMAll versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by null pointer dereference vulnerability, which may allows an attackeEPSS 0.8%CVE-2024-22063HIGHZTE ZENIC ONE R58 product has a CSV injection vulnerabilityEPSS 0.8%CVE-2025-46581CRITICALZTE ZXCDN product has a Struts RCE VulnerabilityEPSS 0.7%CVE-2019-3418MEDIUMAll versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability (XSS). Due to incomplete input vEPSS 0.7%CVE-2023-25644MEDIUMDenial of Service Vulnerability in Some ZTE Mobile Internet ProductsEPSS 0.7%CVE-2018-7365MEDIUMAll versions up to ZXCLOUD iRAI V5.01.05 of the ZTE uSmartView product are impacted by untrusted search path vulnerability, which may allow EPSS 0.7%CVE-2018-7356MEDIUMAll versions up to V3.03.10.B23P2 of ZTE ZXR10 8905E product are impacted by TCP Initial Sequence Number (ISN) reuse vulnerability, which caEPSS 0.7%CVE-2024-22067MEDIUMZTE NH8091 product has an improper permission control vulnerabilityEPSS 0.7%CVE-2019-3413MEDIUMAll versions up to V20.18.40.R7.B1of ZTE NetNumen DAP product have an XSS vulnerability. Due to the lack of correct validation of client datEPSS 0.6%