ГлавнаяУязвимости → CVE-2023-25646
7.1высокая

CVE-2023-25646

Описание

There is an unauthorized access vulnerability in ZTE H388X. If H388X is caused by brute-force serial port cracking,attackers with common user permissions can use this vulnerability to obtain elevated permissions on the affected device by performing specific operations.

Затрагиваемое ПО
Zte Zxhn h388x firmwareZte Zxhn h388x
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Источники
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1035844https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1035844