We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-22068

Weak Password Vulnerability in ZTE ZSR V2 Intelligent Multi Service Router



Description

Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series on 64 bit allows Functionality Bypass.This issue affects ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series: V4.00.10 and earlier.

Reserved 2024-01-05 | Published 2024-10-10 | Updated 2024-10-10 | Assigner zte


MEDIUM: 6.0CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:H

Problem types

CWE-269 Improper Privilege Management

Product status

Default status
unaffected

V4.00.10 and earlier
affected

References

support.zte.com.cn/...ui/bulletin/detail/5359853646778130472

cve.org (CVE-2024-22068)

nvd.nist.gov (CVE-2024-22068)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-22068

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.