Vulnerabilities > ZTE > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-10-20 CVE-2021-21747 Cross-site Scripting vulnerability in ZTE Mf971R Firmware
ZTE MF971R product has reflective XSS vulnerability.
network
zte CWE-79
4.3
4.3
2021-09-25 CVE-2021-21742 Unspecified vulnerability in ZTE Axon 30 PRO Message Service 5.3.1.2103091059
There is an information leak vulnerability in the message service app of a ZTE mobile phone.
network
zte
4.3
4.3
2021-08-05 CVE-2021-21738 Cross-site Scripting vulnerability in ZTE Zxiptv Firmware Zxiptveaspv5.06.04.09
ZTE's big video business platform has two reflective cross-site scripting (XSS) vulnerabilities.
network
zte CWE-79
4.3
4.3
2021-06-24 CVE-2021-21737 Incorrect Default Permissions vulnerability in ZTE Zxv10 B860H V5.0 Firmware V83011303.0010/V83011303.0016
A smart STB product of ZTE is impacted by a permission and access control vulnerability.
network
low complexity
zte CWE-276
5.0
5.0
2021-06-10 CVE-2021-21735 Improper Preservation of Permissions vulnerability in ZTE Zxhn H168N Firmware
A ZTE product has an information leak vulnerability.
network
low complexity
zte CWE-281
4.0
4.0
2021-05-28 CVE-2021-21734 Cleartext Storage of Sensitive Information vulnerability in ZTE products
Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command.
network
low complexity
zte CWE-312
4.0
4.0
2021-05-19 CVE-2021-21733 Information Exposure vulnerability in ZTE Zxcdn
The management system of ZXCDN is impacted by the information leak vulnerability.
network
low complexity
zte CWE-200
4.0
4.0
2021-05-19 CVE-2021-21732 Incorrect Default Permissions vulnerability in ZTE Axon 11 5G Firmware
A mobile phone of ZTE is impacted by improper access control vulnerability.
network
low complexity
zte CWE-276
5.0
5.0
2021-04-13 CVE-2021-21730 Unspecified vulnerability in ZTE Zxhn H168N Firmware 3.5.0Ty.T6
A ZTE product is impacted by improper access control vulnerability.
network
low complexity
zte
5.0
5.0
2021-04-13 CVE-2021-21729 Cross-Site Request Forgery (CSRF) vulnerability in ZTE Zxhn H108N Firmware and Zxhn H168N Firmware
Some ZTE products have CSRF vulnerability.
network
zte CWE-352
4.3
4.3