Vulnerabilities > ZTE > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-18 | CVE-2024-22067 | Unspecified vulnerability in ZTE Nh8091 Firmware Znh8091V1.8 ZTE NH8091 product has an improper permission control vulnerability. | 8.8 |
| 2024-10-29 | CVE-2024-22065 | OS Command Injection vulnerability in ZTE Mf258K PRO Firmware 1.0.0B03 There is a command injection vulnerability in ZTE MF258 Pro product. | 8.8 |
| 2024-08-08 | CVE-2024-22069 | Unspecified vulnerability in ZTE Zxv10 Et301 Firmware and Zxv10 Xt802 Firmware There is a permission and access control vulnerability of ZTE's ZXV10 XT802/ET301 product.Attackers with common permissions can log in the terminal web and change the password of the administrator illegally by intercepting requests to change the passwords. | 8.8 |
| 2024-07-09 | CVE-2024-22062 | Incorrect Default Permissions vulnerability in ZTE Zxcloud Irai There is a permissions and access control vulnerability in ZXCLOUD IRAI.An attacker can elevate non-administrator permissions to administrator permissions by modifying the configuration. | 8.8 |
| 2024-01-03 | CVE-2023-41776 | Improper Privilege Management vulnerability in ZTE Zxcloud Irai There is a local privilege escalation vulnerability of ZTE's ZXCLOUD iRAI.Attackers with regular user privileges can create a fake process, and to escalate local privileges. | 7.8 |
| 2024-01-03 | CVE-2023-41780 | Uncontrolled Search Path Element vulnerability in ZTE Zxcloud Irai There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. | 7.8 |
| 2024-01-03 | CVE-2023-41783 | Code Injection vulnerability in ZTE Zxcloud Irai There is a command injection vulnerability of ZTE's ZXCLOUD iRAI. | 7.8 |
| 2023-12-14 | CVE-2023-25643 | Command Injection vulnerability in ZTE Mc801A1 Firmware and Mc801A Firmware There is a command injection vulnerability in some ZTE mobile internet products. | 8.8 |
| 2023-12-14 | CVE-2023-25644 | Unspecified vulnerability in ZTE Mc801A1 Firmware and Mc801A Firmware There is a denial of service vulnerability in some ZTE mobile internet products. | 7.5 |
| 2023-12-14 | CVE-2023-25648 | Incorrect Permission Assignment for Critical Resource vulnerability in ZTE Zxcloud Irai There is a weak folder permission vulnerability in ZTE's ZXCLOUD iRAI product. | 7.8 |