Vulnerabilities > ZTE

DATE CVE VULNERABILITY TITLE RISK
2019-11-07 CVE-2019-3422 Information Exposure vulnerability in ZTE Mf910S Firmware
The Sec Consult Security Lab reported an information disclosure vulnerability in MF910S product to ZTE PSIRT in October 2019.
local
low complexity
zte CWE-200
6.2
6.2
2019-10-31 CVE-2019-3419 Unspecified vulnerability in ZTE Zxmp M721 DX Firmware Zxmpm721V3.10P01B10M2Ncp
A security vulnerability exists in a management port in the version of ZTE's ZXMP M721V3.10P01B10_M2NCP.
low complexity
zte
5.7
5.7
2019-09-23 CVE-2019-3416 Improper Input Validation vulnerability in ZTE Zxv10 B860A Firmware 81511329.1008
All versions up to V81511329.1008 of ZTE ZXV10 B860A products are impacted by input validation vulnerability.
network
low complexity
zte CWE-20
critical
 9.8
9.8
2019-08-15 CVE-2019-3418 Cross-site Scripting vulnerability in ZTE Zxhn F670 Firmware
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability (XSS).
network
low complexity
zte CWE-79
5.4
5.4
2019-08-15 CVE-2019-3417 OS Command Injection vulnerability in ZTE Zxhn F670 Firmware
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by command injection vulnerability.
network
low complexity
zte CWE-78
8.8
8.8
2019-07-22 CVE-2019-3414 Cross-site Scripting vulnerability in ZTE Otcp Firmware 1.19.20.02
All versions up to V1.19.20.02 of ZTE OTCP product are impacted by XSS vulnerability.
low complexity
zte CWE-79
4.8
4.8
2019-07-11 CVE-2019-3415 Path Traversal vulnerability in ZTE Zxmw Nr8000 Firmware 2.4.4.03/2.4.4.04
ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path traversal vulnerability.
low complexity
zte CWE-22
5.7
5.7
2019-06-11 CVE-2019-3413 Cross-site Scripting vulnerability in ZTE Netnumen DAP Firmware 20.18.40.R7.B1
All versions up to V20.18.40.R7.B1of ZTE NetNumen DAP product have an XSS vulnerability.
network
low complexity
zte CWE-79
5.4
5.4
2019-06-11 CVE-2019-3412 OS Command Injection vulnerability in ZTE Mf920 Firmware
All versions up to BD_R218V2.4 of ZTE MF920 product are impacted by command execution vulnerability.
network
low complexity
zte CWE-78
critical
 9.8
9.8
2019-06-11 CVE-2019-3411 Missing Authentication for Critical Function vulnerability in ZTE Mf920 Firmware
All versions up to BD_R218V2.4 of ZTE MF920 product are impacted by information leak vulnerability.
network
low complexity
zte CWE-306
7.5
7.5