CVE-2018-7366
4.3
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Summary
ZTE ZXV10 B860AV2.1 product ChinaMobile branch with the ICNT versions up to V1.3.3, the BESTV versions up to V1.2.2, the WASU versions up to V1.1.7 and the MGTV versions up to V1.4.6 have an authentication bypass vulnerability, which may allows an unauthorized user to perform unauthorized operations.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ZTE | ZXV10 B860AV2.1_ChinaMobile | unspecified <= ICNT_V1.3.3 | affected |
| ZTE | ZXV10 B860AV2.1_ChinaMobile | unspecified <= BESTV_V1.2.2 | affected |
| ZTE | ZXV10 B860AV2.1_ChinaMobile | unspecified <= WASU_V1.1.7 | affected |
| ZTE | ZXV10 B860AV2.1_ChinaMobile | unspecified <= MGTV_V1.4.6 | affected |
Weaknesses
- Improper Access Control
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.