Описание
There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the device.
Затрагиваемое ПО
Zte Zxr10 1800-2s firmwareZte Zxr10 1800-2sZte Zxr10 2800-4 firmwareZte Zxr10 2800-4Zte Zxr10 3800-8 firmwareZte Zxr10 3800-8Zte Zxr10 160 firmwareZte Zxr10 160
CVSS
| Балл | 7.5 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Источники
https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/1171513586716225590