Vulnerabilities > ZTE

DATE CVE VULNERABILITY TITLE RISK
2019-11-08 CVE-2019-3426 Improper Input Validation vulnerability in ZTE Zxupn-9000E Firmware
The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by the input validation vulnerability.
network
low complexity
zte CWE-20
7.5
2019-11-08 CVE-2019-3425 Incorrect Permission Assignment for Critical Resource vulnerability in ZTE Zxupn-9000E Firmware
The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by vulnerability of permission and access control.
network
low complexity
zte CWE-732
7.5
2019-11-07 CVE-2019-3422 Information Exposure vulnerability in ZTE Mf910S Firmware
The Sec Consult Security Lab reported an information disclosure vulnerability in MF910S product to ZTE PSIRT in October 2019.
local
zte CWE-200
1.9
2019-10-31 CVE-2019-3419 Improper Input Validation vulnerability in ZTE Zxmp M721 DX Firmware Zxmpm721V3.10P01B10M2Ncp
A security vulnerability exists in a management port in the version of ZTE's ZXMP M721V3.10P01B10_M2NCP.
low complexity
zte CWE-20
2.7
2019-09-23 CVE-2019-3416 Improper Input Validation vulnerability in ZTE Zxv10 B860A Firmware
All versions up to V81511329.1008 of ZTE ZXV10 B860A products are impacted by input validation vulnerability.
network
low complexity
zte CWE-20
critical
10.0
2019-08-15 CVE-2019-3418 Cross-site Scripting vulnerability in ZTE Zxhn F670 Firmware
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability (XSS).
network
low complexity
zte CWE-79
5.4
2019-08-15 CVE-2019-3417 OS Command Injection vulnerability in ZTE Zxhn F670 Firmware
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by command injection vulnerability.
network
low complexity
zte CWE-78
8.8
2019-07-22 CVE-2019-3414 Cross-site Scripting vulnerability in ZTE Otcp Firmware
All versions up to V1.19.20.02 of ZTE OTCP product are impacted by XSS vulnerability.
2.3
2019-07-11 CVE-2019-3415 Path Traversal vulnerability in ZTE Zxmw Nr8000 Firmware 2.4.4.03/2.4.4.04
ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path traversal vulnerability.
low complexity
zte CWE-22
2.7
2019-06-11 CVE-2019-3413 Cross-site Scripting vulnerability in ZTE Netnumen DAP Firmware
All versions up to V20.18.40.R7.B1of ZTE NetNumen DAP product have an XSS vulnerability.
network
zte CWE-79
3.5