7.2.01.01

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

LOW

network

low complexity

zte

NVD

Published: 2025-04-27

Updated: 2025-05-12

Summary

There is a Permission Management and Access Control vulnerability in the GoldenDB database product. Attackers can manipulate requests to bypass privilege restrictions and delete content.

Vulnerable Configurations

Part	Description	Count
Application	Zte ZTE Zxcloud Goldendb 7.2.01.01 ZTE Zxcloud Goldendb 6.1.03.09 ZTE Zxcloud Goldendb 6.1.03.10	4

References

https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/1036467615091601464