Improper Privilege Management Vulnerability Affects ZTE Networking Devices
CVE-2024-22068

6.5MEDIUM

Key Information:

Vendor: Zte
Status: Zxr10 1800-2s Series ,zxr10 2800-4,zxr10 3800-8,zxr10 160 Series
Vendor: CVE Published:; 10 October 2024

What is CVE-2024-22068?

Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series on 64 bit allows Functionality Bypass.This issue affects ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series: V4.00.10 and earlier.

Affected Version(s)

ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series 64 bit V4.00.10 and earlier

References

https://support.zte.com.cn/zte-iccp-isupport-webui/bullet...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 10, 2024
Vulnerability Reserved
Jan 5, 2024

Zte

What is CVE-2024-22068?

Affected Version(s)

References

CVSS V3.1

Timeline