- Description
- A ZTE product is impacted by an information leak vulnerability. An attacker could use this vulnerability to obtain the authentication password of the handheld terminal and access the device illegally for operation. This affects: ZXA10 eODN V2.3P2T1
- Source
- psirt@zte.com.cn
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 4
- Impact score
- 2.9
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:N/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:zte:zxa10_eodn_firmware:2.3p2t1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4A106D79-E958-4612-A267-23B30362AB46"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:zte:zxa10_eodn:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "18AA692E-CA8C-4903-94AE-49544F0D2A75"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]