CVE-2022-23137

Summary

ZTE's ZXCDN product has a reflective XSS vulnerability. The attacker could modify the parameters in the content clearing request url, and when a user clicks the url, an XSS attack will be triggered.

Affected Software

VendorProductVersion RangeStatus
n/aZXCDNAll versions up to ZXCDN-IAMV8.01.01.02affected

Weaknesses

  • reflective XSS

ADP Enrichment

CVE Program Container

Additional References

References