6.8

CVE-2026-40003

EPSS 0.03%
Veröffentlicht 07.05.2026 01:15:24
Zuletzt bearbeitet 13.05.2026 19:19:26
Quelle psirt@zte.com.cn
CVE-Watchlists
Login
Unerledigt
Login

USB-based arbitrary memory write vulnerability in ZTE ZX297520V3 soc BootROM

ZTE ZX297520V3 BootROM contains a vulnerability that allows arbitrary memory writes via USB. Attackers can exploit the lack of target address validation in the USB download mode to write data to any location in BootROM runtime memory, thereby overwriting the stack, hijacking the execution flow, bypassing the Secure Boot signature verification mechanism, and achieving unauthorized code execution.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Zte ≫ Zx297520v3 Firmware Version-

Zte ≫ Zx297520v3 Version-

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.073

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	0.9	5.9	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
psirt@zte.com.cn	5.1	0.4	4.7	CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/2144487415169560645

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-40003

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-40003

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-40003

EUVD