Privilege Escalation Vulnerability Affects ZTE ZXR10 ZSR V2 Intelligent Multi Service Router
CVE-2024-22066

6.5MEDIUM

Key Information:

Vendor: ZTE
Status: Zxr10 1800-2s Firmware
Vendor: CVE Published:; 29 October 2024

What is CVE-2024-22066?

There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the device.

References

https://support.zte.com.cn/zte-iccp-isupport-webui/bullet...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 29, 2024