7.1
CVE-2022-39071
- EPSS 0.04%
- Published 30.05.2023 23:15:09
- Last modified 13.01.2025 21:15:09
- Source psirt@zte.com.cn
- Teams watchlist Login
- Open Login
There is an unauthorized access vulnerability in some ZTE mobile phones. If a malicious application is installed on the phone, it could overwrite some system configuration files and user installers without user permission.
Data is provided by the National Vulnerability Database (NVD)
Zte ≫ Blade A52 Firmware Version < m02
Zte ≫ Blade A51 Firmware Version < m07
Zte ≫ Blade A3 Lite Firmware Version < m09
Zte ≫ Blade A5 2020 Firmware Version < m05
Zte ≫ Blade L210 Firmware Version < 1.14
Zte ≫ Blade A7s Firmware Version < 2.2
Zte ≫ Blade A31 Firmware Version < m03
Zte ≫ Blade A31 Plus Firmware Version < m04
Zte ≫ Blade A5 2019 Firmware Version < m13
Zte ≫ Blade A71 Firmware Version < 2.4
Zte ≫ Blade A72 Firmware Version < 11.0.3
Zte ≫ Blade V20 Smart Firmware Version < 1.14
Zte ≫ Blade V30 Firmware Version < 1.11
Zte ≫ Blade V30 Vita Firmware Version < 1.11
Zte ≫ V40 Pro Firmware Version < 11.0.4_9046
Zte ≫ Blade V40 Vita Firmware Version < 11.0.2_8045
Zte ≫ Axon 40 Ultra Firmware Version < 1.0.0b26
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.04% | 0.096 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
|