CVE-2018-7366

Summary

ZTE ZXV10 B860AV2.1 product ChinaMobile branch with the ICNT versions up to V1.3.3, the BESTV versions up to V1.2.2, the WASU versions up to V1.1.7 and the MGTV versions up to V1.4.6 have an authentication bypass vulnerability, which may allows an unauthorized user to perform unauthorized operations.

Affected Software

VendorProductVersion RangeStatus
ZTEZXV10 B860AV2.1_ChinaMobileunspecified <= ICNT_V1.3.3affected
ZTEZXV10 B860AV2.1_ChinaMobileunspecified <= BESTV_V1.2.2affected
ZTEZXV10 B860AV2.1_ChinaMobileunspecified <= WASU_V1.1.7affected
ZTEZXV10 B860AV2.1_ChinaMobileunspecified <= MGTV_V1.4.6affected

Weaknesses

  • Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References