Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Zxr10_3800\-8_firmware
(Zte)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-09-19 | CVE-2017-10930 | The ZXR10 1800-2S before v3.00.40 incorrectly restricts access to a resource from an unauthorized actor, resulting in ordinary users being able to download configuration files to steal information like administrator accounts and passwords. | Zxr10_160_firmware, Zxr10_1800\-2s_firmware, Zxr10_2800\-4_firmware, Zxr10_3800\-8_firmware | 9.8 | ||
| 2017-09-19 | CVE-2017-10931 | The ZXR10 1800-2S before v3.00.40 incorrectly restricts the download of the file directory range for WEB users, resulting in the ability to download any files and cause information leaks such as system configuration. | Zxr10_160_firmware, Zxr10_1800\-2s_firmware, Zxr10_2800\-4_firmware, Zxr10_3800\-8_firmware | 7.5 | ||
| 2024-10-10 | CVE-2024-22068 | Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series on 64 bit allows Functionality Bypass.This issue affects ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series: V4.00.10 and earlier. | Zxr10_160_firmware, Zxr10_1800\-2s_firmware, Zxr10_2800\-4_firmware, Zxr10_3800\-8_firmware | 6.5 | ||
| 2024-10-29 | CVE-2024-22066 | There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the device. | Zxr10_160_firmware, Zxr10_1800\-2s_firmware, Zxr10_2800\-4_firmware, Zxr10_3800\-8_firmware | 6.5 |