Vulnerabilities > ZTE > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-13 | CVE-2019-3420 | Unspecified vulnerability in ZTE Zxhn H108N Firmware 2.5.0Eg1T5Ted All versions up to V2.5.0_EG1T5_TED of ZTE ZXHN H108N product are impacted by an information leak vulnerability. low complexity zte | 6.5 |
| 2019-11-07 | CVE-2019-3422 | Information Exposure vulnerability in ZTE Mf910S Firmware The Sec Consult Security Lab reported an information disclosure vulnerability in MF910S product to ZTE PSIRT in October 2019. | 6.2 |
| 2019-10-31 | CVE-2019-3419 | Unspecified vulnerability in ZTE Zxmp M721 DX Firmware Zxmpm721V3.10P01B10M2Ncp A security vulnerability exists in a management port in the version of ZTE's ZXMP M721V3.10P01B10_M2NCP. low complexity zte | 5.7 |
| 2019-08-15 | CVE-2019-3418 | Cross-site Scripting vulnerability in ZTE Zxhn F670 Firmware All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability (XSS). | 5.4 |
| 2019-07-22 | CVE-2019-3414 | Cross-site Scripting vulnerability in ZTE Otcp Firmware 1.19.20.02 All versions up to V1.19.20.02 of ZTE OTCP product are impacted by XSS vulnerability. | 4.8 |
| 2019-07-11 | CVE-2019-3415 | Path Traversal vulnerability in ZTE Zxmw Nr8000 Firmware 2.4.4.03/2.4.4.04 ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path traversal vulnerability. | 5.7 |
| 2019-06-11 | CVE-2019-3413 | Cross-site Scripting vulnerability in ZTE Netnumen DAP Firmware 20.18.40.R7.B1 All versions up to V20.18.40.R7.B1of ZTE NetNumen DAP product have an XSS vulnerability. | 5.4 |
| 2018-12-28 | CVE-2018-7366 | Incorrect Authorization vulnerability in ZTE Zxv10 B860Av2.1 Chinamobile Firmware ZTE ZXV10 B860AV2.1 product ChinaMobile branch with the ICNT versions up to V1.3.3, the BESTV versions up to V1.2.2, the WASU versions up to V1.1.7 and the MGTV versions up to V1.4.6 have an authentication bypass vulnerability, which may allows an unauthorized user to perform unauthorized operations. | 6.8 |
| 2018-11-16 | CVE-2018-7361 | NULL Pointer Dereference vulnerability in ZTE Zxhn F670 Firmware All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by null pointer dereference vulnerability, which may allows an attacker to cause a denial of service via appviahttp service. | 6.5 |
| 2018-11-16 | CVE-2018-7360 | Information Exposure vulnerability in ZTE Zxhn F670 Firmware All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by information exposure vulnerability, which may allow an unauthenticated attacker to get the GPON SN information via appviahttp service. | 6.5 |