Improper Privilege Management Vulnerability Affects ZTE Networking Devices

CVE-2024-22068

6MEDIUM

Key Information

Vendor: Zte
Status: Zxr10 1800-2s Series ,zxr10 2800-4,zxr10 3800-8,zxr10 160 Series
Vendor: CVE Published:; 10 October 2024

Summary

Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series on 64 bit allows Functionality Bypass.This issue affects ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series: V4.00.10 and earlier.

Affected Version(s)

ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series = V4.00.10 and earlier

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published.
Oct 10, 2024
Vulnerability Reserved.
Jan 5, 2024

Collectors

NVD DatabaseMitre Database