Buffer Overflow Vulnerability in ZTE MF286R Product
CVE-2022-39067

6.5MEDIUM

Key Information:

Vendor: Zte
Status: Mf286r
Vendor: CVE Published:; 22 November 2022

What is CVE-2022-39067?

A buffer overflow vulnerability has been identified in the ZTE MF286R device. This vulnerability arises from inadequate input validation in the parameters of the wireless interface. An authenticated attacker could exploit this flaw to execute a denial of service attack, potentially disrupting the device's operation and affecting network access for users. Prompt attention to this vulnerability is essential to maintain network integrity and security.

Affected Version(s)

MF286R Nordic_MF286R_B06

References

https://support.zte.com.cn/support/news/LoopholeInfoDetai...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 22, 2022
Vulnerability Reserved
Aug 31, 2022

Zte

What is CVE-2022-39067?

Affected Version(s)

References

CVSS V3.1

Timeline