Vulnerabilities > ZTE

DATE CVE VULNERABILITY TITLE RISK
2020-12-21 CVE-2020-6882 Use of Hard-coded Credentials vulnerability in ZTE products
ZTE E8810/E8820/E8822 series routers have an information leak vulnerability, which is caused by hard-coded MQTT service access credentials on the device.
network
low complexity
zte CWE-798
7.5
7.5
2020-12-21 CVE-2020-6881 Origin Validation Error vulnerability in ZTE products
ZTE E8810/E8820/E8822 series routers have an MQTT DoS vulnerability, which is caused by the failure of the device to verify the validity of abnormal messages.
network
low complexity
zte CWE-346
7.5
7.5
2020-12-01 CVE-2020-6880 SQL Injection vulnerability in ZTE Zxv10 W908 Firmware
A ZXELINK wireless controller has a SQL injection vulnerability.
network
low complexity
zte CWE-89
critical
 9.8
9.8
2020-11-19 CVE-2020-6879 Improper Input Validation vulnerability in ZTE Zxhn F670L Firmware and Zxhn Z500 Firmware
Some ZTE devices have input verification vulnerabilities.
low complexity
zte CWE-20
3.5
3.5
2020-11-05 CVE-2020-6877 Unspecified vulnerability in ZTE Zxa10 Eodn Firmware 2.3P2T1
A ZTE product is impacted by an information leak vulnerability.
network
low complexity
zte
8.8
8.8
2020-10-26 CVE-2020-6876 Cross-site Scripting vulnerability in ZTE Evdc Zxcloudirosv6.03.04
A ZTE product is impacted by an XSS vulnerability.
network
low complexity
zte CWE-79
5.4
5.4
2020-10-05 CVE-2020-6875 Missing Authentication for Critical Function vulnerability in ZTE Zxone 19700 Snpe Firmware Zxone8700V1.40R2B13Snpe
A ZTE product is impacted by the improper access control vulnerability.
network
low complexity
zte CWE-306
critical
 9.8
9.8
2020-09-01 CVE-2020-6874 Insufficiently Protected Credentials vulnerability in ZTE Zxiptv Firmware Zxiptvwebpv5.09.08.04
A ZTE product is impacted by the cryptographic issues vulnerability.
network
low complexity
zte CWE-522
critical
 9.1
9.1
2020-09-01 CVE-2020-6873 Unspecified vulnerability in ZTE Zxr10 2800-4 Almpufb(Low) Firmware
A ZTE product has a DoS vulnerability.
network
low complexity
zte
5.3
5.3
2020-07-20 CVE-2020-6872 Cross-site Scripting vulnerability in ZTE products
The server management software module of ZTE has a storage XSS vulnerability.
network
low complexity
zte CWE-79
6.1
6.1