Vulnerabilities > ZTE
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-17 | CVE-2020-6869 | Unspecified vulnerability in ZTE Ztemarket APK 10.06 All versions up to 10.06 of ZTEMarket APK are impacted by an information leak vulnerability. | 8.1 |
| 2020-06-08 | CVE-2020-12695 | Incorrect Default Permissions vulnerability in multiple products The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. | 7.5 |
| 2020-06-01 | CVE-2020-6868 | Improper Input Validation vulnerability in ZTE F680 Firmware Zxhnf680V9.0.10P1N6 There is an input validation vulnerability in a PON terminal product of ZTE, which supports the creation of WAN connections through WEB management pages. | 6.5 |
| 2020-04-30 | CVE-2020-6867 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in ZTE Zenic ONE R22B 16.19.10P02Sp002/6.19.10P02Sp005 ZTE's SDON controller is impacted by the resource management error vulnerability. | 5.5 |
| 2020-04-30 | CVE-2020-6866 | Unspecified vulnerability in ZTE Zxctn 6500 Firmware 2.10.00R3B87 A ZTE product is impacted by a resource management error vulnerability. | 4.9 |
| 2020-04-30 | CVE-2020-6865 | Information Exposure vulnerability in ZTE Oscp 16.19.10/16.19.20 ZTE SDN controller platform is impacted by an information leakage vulnerability. | 6.5 |
| 2020-02-27 | CVE-2020-6864 | Unspecified vulnerability in ZTE E8820V3 Firmware 3.1.0.1000.4 ZTE E8820V3 router product is impacted by an information leak vulnerability. low complexity zte | 6.5 |
| 2020-02-27 | CVE-2020-6863 | Unspecified vulnerability in ZTE E8820V3 Firmware 3.1.0.1000.4 ZTE E8820V3 router product is impacted by a permission and access control vulnerability. low complexity zte | 6.5 |
| 2020-02-20 | CVE-2014-4019 | Information Exposure vulnerability in ZTE Zxv10 W300 Firmware W300V1.0.0Azrdlk ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direct request for rom-0. | 7.5 |
| 2020-01-17 | CVE-2020-6862 | Incorrect Resource Transfer Between Spheres vulnerability in ZTE F6X2W Firmware 6.0.10P2T2/6.0.10P2T5 V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. | 5.3 |