Vulnerabilities > ZTE > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-10-18 CVE-2024-10119 OS Command Injection vulnerability in ZTE Wrtm326 Firmware
The wireless router WRTM326 from SECOM does not properly validate a specific parameter.
network
low complexity
zte CWE-78
critical
 9.8
9.8
2023-01-06 CVE-2022-39073 Command Injection vulnerability in ZTE Mf286R Firmware Nordicmf286Rb06
There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands.
network
low complexity
zte CWE-77
critical
 9.8
9.8
2022-11-22 CVE-2022-39070 Unspecified vulnerability in ZTE Zxa10 C300M Firmware and Zxa10 C350M Firmware
There is an access control vulnerability in some ZTE PON OLT products.
network
low complexity
zte
critical
 9.8
9.8
2022-09-23 CVE-2022-23144 Unspecified vulnerability in ZTE products
There is a broken access control vulnerability in ZTE ZXvSTB product.
network
low complexity
zte
critical
 9.1
9.1
2021-10-20 CVE-2021-21748 Out-of-bounds Write vulnerability in ZTE Mf971R Firmware
ZTE MF971R product has two stack-based buffer overflow vulnerabilities.
network
low complexity
zte CWE-787
critical
 9.8
9.8
2021-10-20 CVE-2021-21749 Out-of-bounds Write vulnerability in ZTE Mf971R Firmware
ZTE MF971R product has two stack-based buffer overflow vulnerabilities.
network
low complexity
zte CWE-787
critical
 9.8
9.8
2021-08-30 CVE-2021-21741 Deserialization of Untrusted Data vulnerability in ZTE Zxv10 M910 Firmware
There is a command execution vulnerability in a ZTE conference management system.
network
low complexity
zte CWE-502
critical
 9.8
9.8
2021-04-13 CVE-2021-21730 Unspecified vulnerability in ZTE Zxhn H168N Firmware 3.5.0Ty.T6
A ZTE product is impacted by improper access control vulnerability.
network
low complexity
zte
critical
 9.8
9.8
2020-12-01 CVE-2020-6880 SQL Injection vulnerability in ZTE Zxv10 W908 Firmware
A ZXELINK wireless controller has a SQL injection vulnerability.
network
low complexity
zte CWE-89
critical
 9.8
9.8
2020-10-05 CVE-2020-6875 Missing Authentication for Critical Function vulnerability in ZTE Zxone 19700 Snpe Firmware Zxone8700V1.40R2B13Snpe
A ZTE product is impacted by the improper access control vulnerability.
network
low complexity
zte CWE-306
critical
 9.8
9.8