CVE-2024-22066
- EPSS 0.32%
- Veröffentlicht 29.10.2024 09:15:06
- Zuletzt bearbeitet 08.11.2024 14:31:32
There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the device.
CVE-2024-22068
- EPSS 0.04%
- Veröffentlicht 10.10.2024 09:15:03
- Zuletzt bearbeitet 07.02.2025 15:32:50
Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series on 64 bit allows Functionality Bypass.This issue affects ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series: V4.00.10 an...
CVE-2017-10930
- EPSS 0.33%
- Veröffentlicht 19.09.2017 14:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The ZXR10 1800-2S before v3.00.40 incorrectly restricts access to a resource from an unauthorized actor, resulting in ordinary users being able to download configuration files to steal information like administrator accounts and passwords.
CVE-2017-10931
- EPSS 0.4%
- Veröffentlicht 19.09.2017 14:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The ZXR10 1800-2S before v3.00.40 incorrectly restricts the download of the file directory range for WEB users, resulting in the ability to download any files and cause information leaks such as system configuration.