Vulnerabilities > ZTE > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-30 | CVE-2020-6866 | Resource Exhaustion vulnerability in ZTE Zxctn 6500 Firmware 2.10.00R3B87 A ZTE product is impacted by a resource management error vulnerability. | 4.0 |
| 2020-04-30 | CVE-2020-6865 | Information Exposure vulnerability in ZTE Oscp 16.19.10/16.19.20 ZTE SDN controller platform is impacted by an information leakage vulnerability. | 4.0 |
| 2020-02-20 | CVE-2014-4019 | Information Exposure vulnerability in ZTE Zxv10 W300 Firmware W300V1.0.0Azrdlk ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direct request for rom-0. | 5.0 |
| 2020-01-17 | CVE-2020-6862 | Incorrect Resource Transfer Between Spheres vulnerability in ZTE F6X2W Firmware 6.0.10P2T2/6.0.10P2T5 V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. | 5.0 |
| 2019-12-23 | CVE-2019-3431 | Insufficiently Protected Credentials vulnerability in ZTE Zxcloud Goldendata VAP Zxivsvapportalxzgav4.01.01.02 All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have encryption problems vulnerability. | 5.0 |
| 2019-12-23 | CVE-2019-3430 | Information Exposure vulnerability in ZTE Zxcloud Goldendata VAP Zxivsvapportalxzgav4.01.01.02 All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have an information disclosure vulnerability. | 4.0 |
| 2019-12-23 | CVE-2019-3429 | Information Exposure Through Log Files vulnerability in ZTE Zxcloud Goldendata VAP Zxivsvapportalxzgav4.01.01.02 All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have a file reading vulnerability. | 5.0 |
| 2019-11-22 | CVE-2019-3428 | Unspecified vulnerability in ZTE Zxcdn Iamweb Firmware 6.01.03.01 The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. | 4.0 |
| 2019-11-22 | CVE-2019-3427 | Code Injection vulnerability in ZTE Zxcdn Iamweb Firmware 6.01.03.01 The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a code injection vulnerability. | 6.5 |
| 2019-08-15 | CVE-2019-3418 | Cross-site Scripting vulnerability in ZTE Zxhn F670 Firmware All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability (XSS). | 5.4 |