CVE-2022-23139
N/A
N/A
Summary
ZTE's ZXMP M721 product has a permission and access control vulnerability. Since the folder permission viewed by sftp is 666, which is inconsistent with the actual permission. It’s easy for?users to?ignore the modification?of?the file permission configuration, so that low-authority accounts could actually obtain higher operating permissions on key files.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ZXMP M721 | V5.10.030.006 | affected |
Weaknesses
- permission and access control
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.